Sysmon Installation to Windows Server

Updated April 04, 2025 09:21

Download sysmon from https://download.sysinternals.com/files/Sysmon.zip,
Extract Sysmon.zip under C:/ drive,

Run CMD as administrator and execute command below;

C:/Sysmon/Sysmon64 -accepteula -i -h md5,sha256 -n

Copy our recommended config file to C:/Sysmon folder and execute command below on CMD,

Sysmon64 -c C:/Sysmon/sysmonconfig-logsign.xml

After complete NXLog integration ,Sysmon will start forward logs to Logsign.

sysmonconfig-logsign.xml
(500 KB)

Articles in this section

See more

Become a Certified Logsign User/Administrator

Sign-up for Logsign Academy and take the courses to learn about Logsign USO Platform in detail. Enjoy the courses, and get your badges and certificates. In these courses, you'll learn how to use Logsign in your work and add value to your career.

Our Logsign USO Platform illustrate our expertise. So do the blog. Through our blog posts, deepen your knowledge on various SecOps topics or get updated about important news & modern approaches for cybersecurity. Get into the habit of reading valuable information provided by Logsign. Be a step ahead.