Posh-Sysmon

0.6

Module for the creation and managing of Sysinternal Sysmon configuration XML files.

Minimum PowerShell version

3.0

Installation Options

Copy and Paste the following command to install this package using PowerShellGet More Info

Install-Module -Name Posh-Sysmon -RequiredVersion 0.6

Copy and Paste the following command to install this package using Microsoft.PowerShell.PSResourceGet More Info

Install-PSResource -Name Posh-Sysmon -Version 0.6

You can deploy this package directly to Azure Automation. Note that deploying packages with dependencies will deploy all the dependencies to Azure Automation. Learn More

Manually download the .nupkg file to your system's default download location. Note that the file won't be unpacked, and won't include any dependencies. Learn More

Owners

Copyright

(c) 2016 Carlos Perez carlos_Perez@darkoperator.com. All rights reserved.

Package Details

Author(s)

  • Carlos Perez carlos_Perez@darkoperator.com

Functions

Get-SysmonHashingAlgorithm Get-SysmonRule New-SysmonConfiguration New-SysmonDriverLoadFilter New-SysmonFileCreateFilter New-SysmonImageLoadFilter New-SysmonNetworkConnectFilter New-SysmonProcessCreateFilter New-SysmonProcessTerminateFilter Remove-SysmonRule Remove-SysmonRuleFilter Set-SysmonHashingAlgorithm Set-SysmonRule Get-SysmonEventData Get-SysmonRuleFilter

Dependencies

This module has no dependencies.

Release Notes

* Added support for Sysmon 4.0 XML schemea (Schema version 3.0)
* One can select the version of schema to support when creating the configuration file.
* All functions have been updated to support the use of more than one rule as per Schema 3.0

FileList

Version History

Version Downloads Last updated
1.2 2,480 9/21/2018
1.1 226 3/5/2018
1.0 22 3/4/2018
0.7.5 401 2/20/2017
0.7.3 122 11/20/2016
0.7.2 89 8/25/2016
0.7.1 30 8/16/2016
0.7 20 8/15/2016
0.6 (current version) 30 7/29/2016
0.5.1 105 2/25/2016
0.4 66 11/4/2015
Show less