| DisplayName | Description | ID | Target | Category | Enabled | Instance Name | Counter Name | Frequency | Event_ID | Event Source | Alert Generate | Alert Severity | Alert Priority | Remotable | Event Log | |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
 | Read Sysmon events | Reads Sysmon events from the event log and prepares them for publishing | Microsoft.SystemCenter.Sysmon.CollectEvents | Microsoft.Windows.Computer | EventCollection | False | 0 | 0 | False | True | Microsoft-Windows-Sysmon/Operational | |||||
| Monitoring - Read Sysmon events | Collects error events from Sysmon events rules for monitoring purposes | Microsoft.SystemCenter.Sysmon.CollectRuleErrors.CollectEvents | Microsoft.Windows.Computer | Custom | False | 0 | 0 | False | False |
Home