Support file and DNS auditing (evented tables) on Windows

fleetdm / fleet

Open-source platform for IT, security, and infrastructure teams. (Linux, macOS, Chrome, Windows, cloud, data center)

https://fleetdm.com

Other

2.95k stars 409 forks source link

Open dherder opened 1 month ago

dherder commented 1 month ago

File auditing events are supported on Linux and macOS. Recently, we added process auditing on Windows. Additional work is required to add file and DNS auditing on Windows. See https://docs.google.com/document/d/18HKASG9x6YY68ACp4RJR-wBKaXXtz4Et6h1yOWjLVSE/edit?usp=sharing

noahtalerman commented 1 month ago

Thanks @dherder. This is a request from security right? (not IT) Just double checking.