Cybersecurity Tool: Sysmon Installation Tutorial
Рет қаралды 6,029
Күн бұрынLearn how to install Sysmon with this walkthrough tutorial for Tool or Tip Thursday. Follow our step-by-step guide to set up Sysmon on your system, enhance your security, and gain valuable insights into system activity. Stay updated with the latest tools and tips for maximizing your system's performance. #SysmonInstallation #Tutorial #ToolOrTipThursday #systemsecurity #StepByStepGuide #cybersecurity #cybersecurity101 #cyberdefenders
Resources:
Sysmon - learn.microsoft.com/en-us/sys...
Sysmon Configuration - github.com/olafhartong/sysmon...
_________________________________
THE MYDFIR SOC ANALYST COURSE:
With 8 chapters and 30+ hands-on labs tailored to security operations, I am focused on transforming you into a standout SOC analyst. Beyond tools, you'll master the investigation process and uncover hidden details. Let's make a real difference together.
▸Enroll here: academy.mydfir.com/p/soc
_________________________________
SIGN UP FOR FREE MENTORSHIP
Getting started in Cybersecurity is difficult and you don't have to do it alone.
Let me help you on your journey.
▸Sign up for FREE here: www.mydfir.com/mentorship
_________________________________
RECOMMEND COURSES FOR BEGINNERS:
Coursera Google Cybersecurity Program
Affiliate Link - imp.i384100.net/mydfir
Microsoft Cybersecurity Analyst Professional Certificate
Affiliate Link - imp.i384100.net/mydfir-MS
Coursera Google IT Support Professional Certificate
Affiliate Link - imp.i384100.net/mydfir-IT
_________________________________
PRODUCTS TO HELP YOU GET STARTED
🗺️ 1-Year Cybersecurity Roadmap: mydfir.gumroad.com/l/roadmap
📄 Resume Template: mydfir.gumroad.com/l/Resume-T...
📑 Cover Letter Template: mydfir.gumroad.com/l/Cover-Le...
🎙️ Interview Questions: www.mydfir.com/interview
📚 Cybersecurity bookmarks: mydfir.gumroad.com/l/bookmarks
_________________________________
EARLY ACCESS & EXCLUSIVE VIDEOS
Patreon: / mydfir
_________________________________
🕒 TIMELINE
00:00 - Introduction
01:01 - Walkthrough Begin
04:30 - Check if Sysmon installed previously
05:40 - Install Sysmon with configuration file
06:29 - Check if Sysmon is successfully installed
_________________________________
FOLLOW ME ON SOCIAL MEDIA:
▸Instagram: / mydfir
▸X: x.com/@MyDFIR
Disclaimer: All opinions in my videos are solely my own. Some links provided are affiliate links!
#cybersecurity #cybersecuritytrainingforbeginners #cybersecurityforbeginners #socanalyst #soc
@ajanitau3405 5 ай бұрын
I would not have been able to download sysmon without this instruction. Humble bow.
@MyDFIR 5 ай бұрын
Happy to help!
@TediousSecurity Жыл бұрын
I've been on the swiftonsecurity github trying to install this for a bit longer than I'd care to admit and this one finally worked so thank you.
@MyDFIR Жыл бұрын
Glad this worked!
@Marcus-dx6fc Ай бұрын
bro you are amazing thank you for these tutorials. Having this configured on my Windows 10 Edu VM was satisfying to complete. Thanks!
@MyDFIR Ай бұрын
Great job!! Always happy to help :)
@ibrahimYODA-qk1ng 6 ай бұрын
channel sweeter than netflix 😄
@MyDFIR 6 ай бұрын
😂thank you
@user-xj9kx8wq1r Ай бұрын
bro i love you. awesome video.
@MyDFIR Ай бұрын
And i love you as well! Thank you for watching ❤️
@kirennguyen1140 7 ай бұрын
love the video
@MyDFIR 7 ай бұрын
Great suggestion! I can definitely do that 👍
@NaveenCs-cn5se 3 ай бұрын
informative video
@MyDFIR 3 ай бұрын
Thank you!
@jaiepramoth2906 Ай бұрын
Recently i have been watching your videos , I lack many things in the field. So decided to learn from your channel. can you tell me which video or playlist I should start from. Active directory or automation projects , or else Soc videos
@MyDFIR Ай бұрын
Hey! Welcome and absolutely. I have 2 playlists that I've created to help people focus on either Projects or SOC related labs. Depending on your objective, you can start with either or. SOC Playlist: kzbin.info/aero/PLG6KGSNK4PuDdqYkOuIlAoNmwtLg5wyYJ Project Playlist: kzbin.info/aero/PLG6KGSNK4PuBWmX9NykU0wnWamjxdKhDJ
@jaiepramoth2906 Ай бұрын
Thanks mate
@whoami-ty1kp 2 ай бұрын
So the logs sysmon captures. Do they go to windows event logs?
@MyDFIR 2 ай бұрын
Sysmon has its own event log provider that can be found using windows event viewer
@iftikharahmed2047 2 ай бұрын
@MyDFIR sir i am facing this Issue after installation Sysmon(event viewer cannot open the event log or custom view. Access is denied (5))
@MyDFIR 2 ай бұрын
Try opening event viewer with administrative privileges
@iftikharahmed2047 2 ай бұрын
@@MyDFIR Thanks sir i did this yesterday.
@otobongekanem9532 Жыл бұрын
Can you make a video on how to get splunk for low graded pc's 4gb ram to be precise
@MyDFIR Жыл бұрын
Hey! I will create a video in the future on how to get Splunk up and running but for a 4 GB RAM machine Splunk likely will not perform as expected. However, I would recommend instead looking into TryHackMe to see if there are labs specific to Splunk if that is what you are interested.
@johnvardy9559 11 ай бұрын
on real world do you work on sysmon?
@MyDFIR 11 ай бұрын
Yup! It is rare but I’ve been into some incidents with Sysmon installed. Absolutely loved it.
@johnvardy9559 11 ай бұрын
@@MyDFIR great, as a beginner and researcher due to lof of stuffs its hurt to clarify what you need on everyday tasks.Also could you explain between suricata,wazuh or even snort which is used which you have to know?
@MyDFIR 11 ай бұрын
@@johnvardy9559 Yeah I wouldn't stress too much on individual tools instead I would look at it in a different angle. For example: Pick a category such as IDS and learn ONE tool as the concept will be the same, just the tool syntax is different. Once you learn that one tool, move onto a different category like EDR or SIEM. In your example, snort & suricata will fall under the IDS category. Learn either one of them and you'll understand the concept of how IDS works. Whereas Wazuh, its an XDR with a SIEM component to it. They are all used in real world environments but I see less of Wazuh. Hope that helps!
@williamthomas3233 9 ай бұрын
Are we installing on a VM or host machine ?
@sy_55_harshsingh83 6 ай бұрын
@@williamthomas3233 did you got to know?
МИЛАНА ТУТ 👀
Рет қаралды 7 МЛН
IppSec
Рет қаралды 39 М.