Bleeping Computer

Microsoft Sysmon now detects malware process tampering attempts

Microsoft has released Sysmon 13 with a new security feature that detects if a process has been tampered using process hollowing or process herpaderping techniques. To evade detection by security ...
Bleeping Computer

Sysmon Getting DNS Query Logging with Querying Process Name

To the delight of Windows system administrators everywhere, Microsoft has announced that a new version of Sysmon is coming out this week that will include the ability to log DNS queries performed on a ...
ZDNet

Microsoft Sysmon adds support for detecting Process Herpaderping attacks

Microsoft has released a new version of the Sysinternals package and updated the Sysmon utility with the ability to detect Process Herpaderping and Process Hollowing attacks. Systems running the ...