all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Symon 15.12 is out now

Add to bookmarks
Jan. 17, 2024, 4:37 p.m. | /u/THE_VER1TAS

For [Blue|Purple] Teams in Cyber Defence www.reddit.com

https://learn.microsoft.com/en-us/sysinternals/downloads/sysmon



This update to Sysmon fixes a case of system hanging on uninstall, a crash occurring while parsing configuration files, and a memory leak.



Check out my advanced config that includes blocking rules for most implants used by the bad guys. Let me know what you think!



https://github.com/THEVER1TAS/sysmon-config

advanced bad blocking blueteamsec case check config configuration configuration files crash files fixes implants leak memory memory leak parsing rules sysmon system uninstall update

Visit resource

More from www.reddit.com / For [Blue|Purple] Teams in Cyber Defence

How to enforce usage of Privileged Access Workstations for Admins 10 hours ago | www.reddit.com
access blueteamsec privileged privileged access +1
Attribution of a Russian cyber campaign The Federal Government condemns in the strongest possible terms … 1 day, 5 hours ago | www.reddit.com
actor apt28 attribution blueteamsec +14
North Korean Actors Exploit Weak DMARC Security Policies to Mask Spearphishing Efforts 2 days, 8 hours ago | www.reddit.com
blueteamsec dmarc exploit north +5
Investigating Microsoft Graph Activity Logs 2 days, 10 hours ago | www.reddit.com
blueteamsec graph logs microsoft
New Ivanti vulnerability 2 days, 10 hours ago | www.reddit.com
blueteamsec can cvss ivanti +4
How an empty S3 bucket can make your AWS bill explode - "As it turns … 2 days, 20 hours ago | www.reddit.com
aws backups bill blueteamsec +9
Any tips for doing a living off the land threat hunt on your own computer? 3 days, 2 hours ago | www.reddit.com
blueteamsec clients computer computers +18
Sodinokibi/REvil Affiliate Sentenced for Role in $700M Ransomware Scheme 3 days, 4 hours ago | www.reddit.com
affiliate blueteamsec ransomware revil +3
A Summary of 6 Months Tracking AiTM Campaigns 3 days, 14 hours ago | www.reddit.com
aitm blueteamsec campaigns tracking

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Cybersecurity Consultant

@ Devoteam | Cité Mahrajène, Tunisia
View on infosec-jobs.com

GTI Manager of Cybersecurity Operations

@ Grant Thornton | Phoenix, AZ, United States
View on infosec-jobs.com

(Senior) Director of Information Governance, Risk, and Compliance

@ SIXT | Munich, Germany
View on infosec-jobs.com

Information System Security Engineer

@ Space Dynamics Laboratory | North Logan, UT
View on infosec-jobs.com

Intelligence Specialist (Threat/DCO) - Level 3

@ Constellation Technologies | Fort Meade, MD
View on infosec-jobs.com

Cybersecurity GRC Specialist (On-site)

@ EnerSys | Reading, PA, US, 19605
View on infosec-jobs.com
View more jobs