New Sysinternal versions of Procmon, Sysmon, TcpView and Process Explorer were released at end of last week.

Sysinternals: Procmon, Sysmon, TcpView and Process Explorer update (sans.edu)

https://docs.microsoft.com/en-us/sysinternals/

What’s New (May 25, 2021)

    • Process Monitor v3.80 Process Monitor is the latest tool to integrate with the new Sysinternals theme engine, giving it dark mode support.
    • Sysmon v13.20 This update to Sysmon, an advanced system security monitor, adds “not begin with” and “not end with” filter conditions and fixes a regression for rule include/exclude logic.
    • TCPView v4.10 This update to TCPView, a TCP/UDP endpoint query tool, adds the ability to filter connections by state.
    • Process Explorer v16.40 This update to Process Explorer, an advanced process, DLL and handle viewing utility, adds process filtering support to the main display and reports process CET (shadow stack) support.