TechUG March 2018

For those who attended my TechUG presentation – thank you. Below you will find links to the presentation along with reference documents and URLs that will assist in further reading. If you did not attend please be mindful the slides were talking points and additional aspects were discussed and of course this material does not include the live demos of various tools.

My presentation

Sysinternals Download Links

Troubleshooting with the Windows Sysinternals Tools Book (Second Edition October 2016)

Process Explorer (ProcExp) – Digitally Signed Malware References

Sysmon

Base Template (SwiftonSecurity)

Mark Russinovich Sysmon Presentation

Useful Sysmon Posts

Windows Event Forwarding

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.