Skip to main content

This browser is no longer supported.

Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.

Download Microsoft Edge More info about Internet Explorer and Microsoft Edge

Share via

Facebook x.com LinkedIn Email

SYSMON and Windows Event ID

Matsko, Michael 0 Reputation points

2025-10-20T16:05:22.0233333+00:00

I am looking for data on specific Windows Event IDs in SYSMON data. Is there any way to get the Windows Event ID from SYSMON data?

Sysinternals

Advanced system utilities to manage, troubleshoot, and diagnose Windows and Linux systems and applications.

Sign in to follow

0 comments No comments

0 {count} votes

Sign in to comment

Comment Use comments to ask for clarification, additional information, or improvements to the question.

Sign in to answer

Your answer

Answer Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.

Additional resources

Question activity

Sign in to follow questions and users

Additional resources

en-us

Your Privacy Choices

AI Disclaimer
Previous Versions
Blog
Contribute
Privacy
Terms of Use
Code of Conduct
Trademarks
© Microsoft 2025