Is your feature request related to a problem or use case?
On a shared server, I have multiple users and in order to debug what was catched by ForceFolder and ForceProcess I need to have some log but even with the reg HKLM\SYSTEM\CurrentControlSet\Services\SbieSvc I'm not able to view what was catched.
Describe the solution you'd like
I would like to have a Windows eventlog indicating that the driver has caught process XXXX due to rule YYYYY.
Is your feature request related to a problem or use case?
On a shared server, I have multiple users and in order to debug what was catched by ForceFolder and ForceProcess I need to have some log but even with the reg
HKLM\SYSTEM\CurrentControlSet\Services\SbieSvcI'm not able to view what was catched.Describe the solution you'd like
I would like to have a Windows eventlog indicating that the driver has caught process XXXX due to rule YYYYY.
Describe alternatives you've considered
None