I just attended a seminar where they suggested to watch Windows event
#592/4688 "A new process has been created". Is anyone monitoring this?
Is there a way to watch for any new processes that have not been seen
for x number of days? Some way to creat...
For example, how could I setup SA to watch firewall traffic and if
certain port activity goes beyond a certain percentage based over the
last x number of days, to alert me. Just looking for basic trending