Sysinternals
Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.
1,108 questions
This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
I'm trying to find someone who has used SwiftOnSecuritys "ion-storm" XML configuration with sysmon for event collection and has configured Wazuh rules for the events. I can't figure out how to configure Wazuh to work with the ion-storm agent configuration. I have many hours invested in this but there doesn't seem to be any forums out there that talk about using this very detailed XML file. Ayn help would be appreciated.
Norm