hi all Is there any way to monitor the use of a dll or the execution of a dll? I am looking to monitor the use or execution of "wininet.dll"

Hi. No, currently osquery doesn't have a table that audits DLL load events

glad you for the feedback

As Sysmon (ID 7) can log image loads, including DLLs (though can be resource intensive apparently), could not osquery pull-in such event logs?

You could use osquery as a log forwarder? Like with

windows_eventlog

table maybe?