{"version":1,"type":"rich","provider_name":"Libsyn","provider_url":"https:\/\/www.libsyn.com","height":90,"width":600,"title":"7MS #588: Becoming a Sysmon Sensei with Amanda Berlin","description":" Today Amanda Berlin from&amp;nbsp;Blumira&amp;nbsp;teaches us how to unlock the power of Sysmon so we can gain insight into the good, bad and ugly things happening on our corporate endpoints! &amp;nbsp;Key takeaways:  Sysmon&amp;nbsp;turns your windows logging up to 11, and pairs well with a config file like&amp;nbsp;this one&amp;nbsp;or&amp;nbsp;this one. Careful if you are are running sysmon on non-SSD drives - the intense number of writes might bring that disk to its knees. Just getting started logging all the things with sysmon? &amp;nbsp;Why not pump those logs into a free logging\/alerting system like&amp;nbsp;Wazuh? I think it was&amp;nbsp;SolarWinds log collector&amp;nbsp;I was trying to think of while recording the show,&amp;nbsp;not&amp;nbsp;CloudTrail.    ","author_name":"7 Minute Security","author_url":"https:\/\/7MinSec.com","html":"<iframe title=\"Libsyn Player\" style=\"border: none\" src=\"\/\/html5-player.libsyn.com\/embed\/episode\/id\/27979530\/height\/90\/theme\/custom\/thumbnail\/yes\/direction\/forward\/render-playlist\/no\/custom-color\/88AA3C\/\" height=\"90\" width=\"600\" scrolling=\"no\"  allowfullscreen webkitallowfullscreen mozallowfullscreen oallowfullscreen msallowfullscreen><\/iframe>","thumbnail_url":"https:\/\/assets.libsyn.com\/secure\/item\/27979530"}