tsale/EDR-Telemetry
This project aims to compare and evaluate the telemetry of various EDR products.
Python
Issues
- 1
- 0
Trellix - which product?
#70 opened by 00willo - 1
Missing Task start and Service start telemetries
#69 opened by subvert0r - 1
Linux Telemetry Section
#21 opened by craighrowland - 1
Possible Enhancement request
#59 opened by flukes86 - 1
Enhancement request - shell commands
#64 opened by tanoob - 1
Mapping to MITRE ATT&CK
#55 opened by theyreinthelayer2n3 - 4
- 2
Cortex XDR File Open - Partially implemented
#53 opened by tiagohide - 5
InsightIDR Support
#28 opened by rcegan - 1
CSE - Cisco Secure Endpoint Support
#44 opened by lcostantino - 2
Color blindness
#50 opened by Andynam0 - 3
Telemetry spoofing protection
#49 opened by frack113 - 1
MDE
#45 opened by vboyev-MSFT - 3
CrowdStrike Pipe Connection & Pipe Creation
#35 opened by Guzzy711 - 1
Add support for Arctic Wolf XDR
#34 opened by Guzzy711 - 2
Add Wazuh!
#26 opened by y0d4a - 1
Add Tend Vision One
#27 opened by zerodago - 0
- 2
[Feature Request] - Telemetry-generator - Check for an existing installation of Invoke-AtomicRedTeam
#22 opened by ScioShield - 1
File Opened - Crowdstrike
#12 opened by NicolasSchn - 1
WHIDS
#23 opened by gallypette - 3
MD5 Hash algorithm for Crowdstrike
#3 opened by mthcht - 3
Console logs category
#7 opened by mthcht - 0
MDE correction
#13 opened by BeinGreen - 11
S1 Local Account Creation
#8 opened by bobcrusader - 0
Console categr
#6 opened by mthcht - 2
Defender for Endpoint data
#4 opened by lawndoc - 1
DNS queries for Crowdstrike
#1 opened by mthcht