Credit where credit is due.
Microsoft has started rolling out built-in Sysmon functionality to some Windows 11 systems enrolled in the Windows Insider program.
Sysmon may be somewhat unknown to those who aren’t in cyber security circles but it can also be a useful diagnostic tool as well.
Sysinternals (winternals) tools are so useful ! There is something for everyone there (TcpView, ProcExp are my personal go-tos). MS was well inspired to buy it and hire M. Russinovich.
Not only that, Russinovich through some magic made them keep this online: https://live.sysinternals.com/ and it’s the best site MS has, no bullshit whatsoever, dates showing when the tools were last updated. If you’re helping some unfortunate soul doomed to windows, it’s a great resource.
Real people don’t use windows
I spend most of my time in Server these days… but I didn’t realize W11 didn’t have sysmon… JFK thats criminal
