Welcome
Getting Started
- Account Setup
  - Account Creation Instructions
Azure Fundamentals
- Azure Fundamentals Overview
Azure CLI
- Azure CLI Overview
KQL
- KQL Overview
Powershell
- PowerShell for Azure
Azure Logging References
- Logging
Threat Hunting
- Threat Hunting in Azure
Microsoft Resources
- Microsoft Incident Response Ninja Hub
- Microsoft Defender XDR Ninja Hub
Security Research & Resources
Defender XDR
Azure Sentinel
Microsoft Defender
- Microsoft Defender for Cloud References

Powered by GitBook

Sysmon

Critical tool for hunting on Windows machines and should be installed. Documentation that includes each event type detail provided below.

Last updated 1 day ago

On this page

Sysmon - Sysinternalsdocsmsft