Jordan Drysdale // Tl;dr: Many parsers have been written and several are referenced here. This blog describes a simple parser for Sysmon logs through Event ID (EID) 28 for Microsoft […]
The post Parsing Sysmon Logs on Microsoft Sentinel appeared first on Black Hills Information Security.
Article Link: Parsing Sysmon Logs on Microsoft Sentinel - Black Hills Information Security