search

tsale / EDR-Telemetry

This project aims to compare and evaluate the telemetry of various EDR products.
1.43k stars 141 forks source link

Removing Agent tampering sub-category #30

Closed tsale closed 1 year ago

tsale commented 1 year ago

Pull Request Template

Description

Please provide the below information so we can validate before merging:

  1. Does the proposed EDR feature align with our definition of telemetry?(definition here)
  2. Could you please provide documentation to support the telemetry you are proposing?(If it is held privately, please reach out to me or @inodee)
  3. If no documentation is available for all the categories you are proposing, could you provide screenshots or sanitized logs?

1: Yes 2: N/A 3: N/A

Many have brought up the fact that agent tampering is a more detection focused attribute, and so, we decided to remove this sub-category from the table.