Windows Report

Windows 11 Canary Build KB5077221 Adds Built-In Sysmon

Windows 11 KB5077221 arrives in the Canary Channel with built-in Sysmon support and updated sharing features for Insiders.
Ars Technica

Windows Event Log - why so complicated?

I'm writing a Windows app in unmanaged C++ and want to log some simple events to the Application log. I'm normally a *nix guy and am used to being able to just call syslog() (or asl(3) on Mac OS X). I ...
TWCN Tech News

Event Viewer not working on Windows Server

Event Viewer is a handy tool that allows you to view and analyze detailed logs of various events on your computer. It is pretty useful when your system goes through a crash and you are trying to find ...
Redmond Magazine

Where To Go For Hyper-V Troubleshooting Information

When an unexpected problem occurs in a Windows environment, the first step in resolving that problem is usually to gather information. After all, you need to know what happened before you can fix it.
Ars Technica

Encrypting Syslog\Windows Events? Do you do it and how?

I am setting up Splunk to monitor Syslog from all of my networking devices and Windows events and pretty much the entire environment for auditing and forensics. I will be using the Snare agent to send ...
Bleeping Computer

Microsoft rolls out native Sysmon monitoring in Windows 11

Microsoft has started rolling out built-in Sysmon functionality to some Windows 11 systems enrolled in the Windows Insider program. Microsoft first revealed plans to integrate Sysmon natively into ...