ScarredMonk/SysmonSimulator
Sysmon event simulation utility which can be used to simulate the attacks to generate the Sysmon Event logs for testing the EDR detections and correlation rules by Blue teams.
CLGPL-2.1
Issues
- 0
- 0
Eid2 filter with "\n"
#12 opened by renshareck - 3
Compiler Error
#8 opened by elagrija - 0
- 0
sysmon logs do not show eid25
#9 opened by th-sid1 - 2
Not able to generate eid 24 remotely
#5 opened by hsekowski - 1
Source Code is missing for Version 0.2
#7 opened by TimN0001 - 0
EID 14 - error starting from 2nd execution
#6 opened by MrPumo - 3
SysmonSimulator.exe is missing
#2 opened by dordor89 - 0
- 1
Consider removing interactivity requirement for process terminate and process access events
#3 opened by dstaulcu - 1
running simulator file
#1 opened by siuolkl