Logon Tracker Module

Logon Tracker is an HX Innovation Architecture module designed to enable the investigation of lateral movement within Windows enterprise environments. Logon Tracker improves the efficiency of investigating lateral movement by aggregating historical activity and monitoring new activity. This data is presented in a user interface designed for analyzing investigative leads (e.g., a compromised account) and hunting for suspicious activity (e.g., RDP activity by privileged accounts).

This technical preview release of Logon Tracker is supported on Endpoint Security 5.0 with xAgent 31.

As this is a tech preview module, the usual support SLAs don’t apply to the module. You can also provide feedback to the module team through the email listed below.

Authentication RequiredDownloading this app requires a FireEye subscription to use and is only accessible for FireEye users with an active FireEye Support account. If you already have an account, please . Otherwise, please Request Support Access or Contact Sales to learn more about becoming a FireEye customer.

Support

Developer:FireEye
Supported By:FireEye
Contact:Email
Resources:Logon Tracker v0.3.1 User Guide
FireEye Endpoint Security

Module Info

Version:0.3.1
Last Updated:May 15, 2020
Platform:Windows
Requirements:FireEye Endpoint Security 5.0 with xAgent 31+
Size:16.38 MB
MD5:38E4723A33C6140CCBD61230141329C5
SHA1:0DF4EEB0B3811BCF48374E4F6817F91DFBA4C888
SHA256:754C0D10054C305B0E89823F73B37C49A1073DFA50868B6B09E2A152D8FDB2F0

Similar Apps

Endpoint Security Module
Endpoint Security Module
Endpoint Security Module
Endpoint Security Module