Sysmon

Free • Microsoft Corporation • Windows • Secure Download

Microsoft app for monitoring system events and status in detail.

License Free

Op. System Windows

Category Maintenance

Language English48 more

Author Microsoft Corporation

Size 4.58 MB

Downloads 710

Date Feb 15, 2023

File type ZIP

Architecture Not specified

Content Rating All ages

Advertisement Not specified

SHA256 878fa596b2b8f0080c716d1840c0fcf3cebb46ebabe5b169f6cb40bbf81d9aef

Requirements Not specified

Afrikaans
Amharic
Arabic
Armenian
Belarusian
Bulgarian
Català
Chinese
Croatian
Czech
Danish
Dutch
English
Estonian
Farsi
Finnish
French
German
Greek
Hebrew
Hindi
Hungarian
Icelandic
Indonesian
Italian
Japanese
Kazakh
Korean
Latvian
Lithuanian
Malaysian
Norwegian
Polish
Portuguese
Romanian
Russian
Serbian
Slovak
Slovenian
Spanish
Swahili
Swedish
Tagalog
Thai
Turkish
Ukrainian
Vietnamese
Zulu

Sysmon is a Microsoft application that allows for the monitoring of a system's status and events. It provides detailed control over various system activities such as process creation, network connections, and file creation and deletion. The program is typically installed through the command line. To do this, one must open CMD.exe as an administrator in the installation path and input the necessary command to install it. After installation, users can access the Windows Event Viewer and navigate to the path Applications and Services Logs/Microsoft/Windows/Sysmon/Operational to view all system events. The program is capable of recording various types of process events including process creation, file creation time, network connections, process terminations, loaded drivers, and more. In total, there are 26 different types of events that Sysmon can monitor, ranging from process tampering to DNS queries to changes in the clipboard content. This comprehensive monitoring tool provides users with a thorough insight into the various activities taking place on their system.