Using Process Monitor to Capture System Events

The Techvids library gives you access to in-depth video tutorials, product demos, and troubleshooting guides to enhance your fundamental cybersecurity knowledge and get the most out of your products.

Using Process Monitor to Capture System Events

Glenn from Sophos Support walks you through how to download process monitor, capture system events, and how to send the files to Sophos Support.
Note: Process monitor is not a Sophos Product. Issues regarding process monitor must be addressed by Microsoft.

Timestamps:
0:00 - Overview
0:48 - Download & Extract
1:12 - Capture/Clear Events
1:48 - Save .PML file
2:13 - Send to Sophos
2:53 - Boot Logging
4:00 - More Info

KBA: https://support.sophos.com/support/s/article/KB-000034769?language=en_US

Embed

Sophos Techvids – Expert Tutorials & Cybersecurity Insights

Using Process Monitor to Capture System Events

Related Videos

Sophos Endpoint: Application Control Policy

Sophos Endpoint: Enable SSL/TLS Decryption

Sophos Endpoint: Manual Install

Sophos Endpoint: Prepare a Gold Image

Sophos Endpoint: Reports Overview