Missing Task start and Service start telemetries

tsale / EDR-Telemetry

This project aims to compare and evaluate the telemetry of various EDR products.

1.52k stars 147 forks source link

Open subvert0r opened 3 months ago

subvert0r commented 3 months ago

These telemetries are missing from the comparison:

Task Start
Service Start

If we are going to even include deletion of these, then surely starting it would be included in the comparison..

tsale commented 3 months ago

They are secondary but yes, they should be included. The problem is that for this to happen, we need to update all vendors and that would take time.

Feel free to start the process by creating a PR that would include service and scheduled task start/stopped.