issues
search
tsale
/
EDR-Telemetry
This project aims to compare and evaluate the telemetry of various EDR products.
1.7k
stars
158
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
update WMI for Elastic 8.16
#87
jdu2600
opened
1 day ago
0
Test Telemetry Linux - Crowdstrike (on debian)
#86
mthcht
opened
5 days ago
6
feat: Add JA3/S and JA4 hashing algorithms.
#85
xg5-simon
opened
6 days ago
0
EDR Addition - FortiEDR
#84
SecurityAura
opened
1 week ago
0
Added partially_value_explanations json + 1 change for WatcGuard
#83
tsale
closed
1 week ago
0
Fixing LimaCharlie URL event - HTTP_Request is not supported for Windows
#82
tsale
closed
2 weeks ago
0
Possible "via Event Logs" Categorization Issue
#81
MarDeus
opened
3 weeks ago
3
Add new sub-category Process Call Stacks
#80
jdu2600
opened
1 month ago
12
Add Windows API Telemetry Category
#79
jdu2600
opened
1 month ago
0
Expand WMI Activity category to cover all WMI Activity
#78
jdu2600
closed
1 month ago
12
Add Mac OS telemetry
#77
protocolpaladin
opened
1 month ago
0
Add tehtris edr telemetry
#76
protocolpaladin
opened
1 month ago
0
Add stormshield edr telemetry
#75
protocolpaladin
opened
1 month ago
0
Add telemetry agent Wazuh
#74
protocolpaladin
opened
1 month ago
0
Trend micro edr updates
#73
MyPeaches
opened
2 months ago
4
Updates to SentinelOne Telemetry : Logout event
#72
thiboog
closed
2 months ago
2
Updated EDR telemetry for Qualys
#71
tsale
closed
3 months ago
0
Trellix - which product?
#70
00willo
closed
4 weeks ago
1
Missing Task start and Service start telemetries
#69
subvert0r
opened
4 months ago
1
ESET Inspect Scheduled Task and Service Activity
#68
j91321
closed
4 months ago
3
Simple but useful action to run compare.py on each commit
#67
LuKePicci
closed
4 months ago
1
Addition of Uptycs EDR
#66
joshlemon-uptycs
closed
1 month ago
8
Adding SentinelOne Telemetry Updates
#65
thiboog
closed
4 months ago
6
Enhancement request - shell commands
#64
tanoob
closed
4 months ago
1
more verbose explanation of capability values in README.md
#63
hRun
closed
3 months ago
1
Correcting telemetry for LimaCharlie.
#62
maximelb
closed
5 months ago
5
New script that contains an algorithm to score EDRs of this project
#61
tsale
closed
5 months ago
0
Update EDR_telem.json: adding Sophos
#60
inodee
opened
6 months ago
1
Possible Enhancement request
#59
flukes86
closed
4 months ago
1
update Elastic telemetry based on evidence in public rules repos
#58
jdu2600
closed
7 months ago
8
added compare.py to compare EDRS
#57
SolitudePy
closed
5 months ago
2
Table emoji update: Optimized for Color Blind Users
#56
tsale
closed
8 months ago
0
Mapping to MITRE ATT&CK
#55
theyreinthelayer2n3
closed
8 months ago
1
update Elastic telemetry based on evidence in public rules repos
#54
jdu2600
closed
8 months ago
9
Cortex XDR File Open - Partially implemented
#53
tiagohide
closed
8 months ago
2
Revert branch
#52
tsale
closed
8 months ago
0
Update EDR_telem.json (#48)
#51
tsale
closed
8 months ago
0
Color blindness
#50
Andynam0
closed
8 months ago
2
Telemetry spoofing protection
#49
frack113
closed
8 months ago
3
Update EDR_telem.json
#48
Robert-HarfangLab
closed
8 months ago
2
Add Cortex XDR based on public documentation
#47
pep-un
closed
8 months ago
2
Updated MDE EDR SysOps values
#46
tsale
closed
10 months ago
0
MDE
#45
vboyev-MSFT
closed
10 months ago
1
CSE - Cisco Secure Endpoint Support
#44
lcostantino
closed
8 months ago
1
Adding HarfangLab EDR
#43
mthcht
closed
10 months ago
2
Symantec SES Complete EDR
#42
idev
closed
8 months ago
9
Fixing CrowdStrike's WMI Filter and Consumer Values
#41
tsale
closed
11 months ago
0
Fix ESET Inspect inaccuracies
#40
j91321
closed
11 months ago
6
Trend Micro Telemetry Updates
#37
alextrender
closed
11 months ago
2
fixes to named pipe events
#36
Guzzy711
closed
1 year ago
2
Next