If you're bored of sysmon, here's a quick an dirty one liner to disable it. logman stop EventLog-Microsoft-Windows-Sysmon-Operational -ets Just make sure you run it as system.

11:04 PM · Nov 13, 2020

1
76
267
Replying to @_batsec_
In case anyone is looking to do this programatically, here is some reference code from the Telemetry Sourcerer project: github.com/jthuraisamy/Telem…
0
6
27