When I install sysmon, I can put it in the sysmon folder that I choose. But why does the service reside in C:\WINDOWS\Sysmon.exe instead of where I would rather have it?
thanks again for any advice or suggestions
I'm not sure I understand your question, Sysmon is not a product by Elastic, it is from Microsoft.
Where you install and how you run it has no relation with any Elastic tool.
1 Like
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.