Latest Version 4.0.13
April 7, 2023
This app is archived. App archiving documentation
Sysmon Security Monitoring App for Splunk
This app provides alerts built with splunk search macros to detect a wide variety of suspicious activity in Windows environment via Windows Sysmon and Event Logs. It is designed for 'blue-team' team members.
Built by
Compatibility
Splunk Enterprise
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0
Rating
0
(0)
Log in to rate this app
Support
Not Supported
This app provides alerts built with splunk search macros to detect a wide variety of suspicious activity in Windows environment via Windows Sysmon and Event Logs. It is designed for 'blue-team' team members.
Categories
IT Operations, Security, Fraud & Compliance
Created By
Manas Bellani
Type
app
Downloads
3,046
Licensing
MIT License(Opens new window)Splunk Answers
Ask a question about this app listing(Opens new window)Resources
Log in to report this app listing