Gusty-Dusty / SysmonBeaconing Public

Notifications You must be signed in to change notification settings
Fork 0
Star 4

A powershell script that can find beaconing on an endpoint that is running Sysmon and logging DNS (Event ID 22) and Network Connections (Event ID 3)

4 stars 0 forks Branches Tags Activity

Notifications

Name		Name	Last commit message	Last commit date
Latest commit History 2 Commits
README.md		README.md
SysmonBeaconing.ps1		SysmonBeaconing.ps1

Repository files navigation

SysmonBeaconing

A powershell script that can find beaconing on an endpoint that is running Sysmon and logging DNS (Event ID 22) and Network Connections (Event ID 3)

About

A powershell script that can find beaconing on an endpoint that is running Sysmon and logging DNS (Event ID 22) and Network Connections (Event ID 3)

Report repository

Releases

No releases published

Packages

No packages published

Languages

PowerShell 100.0%