System Monitor (Sysmon) is a small system utility that will monitor your system and will provide you detailed logs about its activity. The product displays data about network connections, process creations, and changes to file creation time. The program will collect data about various events by using SIEM agents and Windows Event Collection and lets you analyze it in order to detect malicious or anomalous activity in your system or network.
Sysmon is able to log process creation for all processes (current and parent). The program also archives the hash tags of process files using SHA256, SHA1 or MD5. Optionally, you may log network connections, including IP addresses, connection's source process, hostnames, port numbers and port names.
Sysmon includes a process GUID that will let you correlate the events even when Windows reuses some process IDs.
- Provides detailed data about your system activity.
- Helps you detect malicious or anomalous activity on your network or PC.
- The tool is aimed at experienced users only.
- Doesn't provide a graphical user interface. Runs from command line only.
|Developer||Microsoft Corp. | see all products from this developer|
|Last Week Downloads||3|
|All Time Downloads||202|
|OS Support||Win 7/8/8.1/10/Vista|
100% CLEAN Certification
Sysmon has been tested by Download82.com team against viruses, spyware, adware, trojan, backdoors and was found to be 100% clean. Our editors will recheck this software periodically to assure that it remains clean.