none
Sysmondrv can be used permanently running on windows servers as a Cyber Attack utility? RRS feed

  • Question

  • I´m using sysmondrv running permanently in the windows servers with the intnetion that help to Security Officer to detect possible attacks but in some cases the tool produce a blue screen. Is recommended use this tool as a Cibersecurity tool or only for troubleshooting?
    Wednesday, June 17, 2020 7:23 PM

All replies

  • Wow absolutely this should be usable as part of your Cybersecurity defence rather than a troubleshooting tool.

    Would you be able to share the memory dump file for the BSOD with me? If so could you contact me offline at syssite@microsoft.com and I will provide you with an upload location.

    MarkC(MSFT)

    Friday, June 19, 2020 8:00 AM