Open YamatoSecurity opened 2 months ago
I'd like to explain more about what the conversion is doing in the background and how it maps sysmon fields to windows built in fields and include pictures of the comparisons that we made for process creation and registry rules.
I'd like to explain more about what the conversion is doing in the background and how it maps sysmon fields to windows built in fields and include pictures of the comparisons that we made for process creation and registry rules.