search

SwiftOnSecurity / sysmon-config

Sysmon configuration file template with default high-quality event tracing
4.68k stars 1.69k forks source link

Add some "TargetFilename" in "SYSMON EVENT ID 15" section #164

Open matcha-shake opened 2 years ago

matcha-shake commented 2 years ago

I added some file extensions these are used for infection and exploitation.