Logon Tracker Module

Logon Tracker is an HX Innovation Architecture module designed to enable the investigation of lateral movement within Windows enterprise environments. Logon Tracker improves the efficiency of investigating lateral movement by aggregating historical activity and monitoring new activity. This data is presented in a user interface designed for analyzing investigative leads (e.g., a compromised account) and hunting for suspicious activity (e.g., RDP activity by privileged accounts). Additionally, Logon Tracker can generate HX alerts for suspicious lateral movement using user-defined alerting rules.

This technical preview release of Logon Tracker is supported on Endpoint Security 5.0.1 with xAgent 31.

As this is a tech preview module, the usual support SLAs don’t apply to the module. You can also provide feedback to the module team through the email listed below.

Authentication RequiredDownloading this app requires a FireEye subscription to use and is only accessible for FireEye users with an active FireEye Support account. If you already have an account, please . Otherwise, please Request Support Access or Contact Sales to learn more about becoming a FireEye customer.

Module Info

Version:0.4.4
Last Updated:September 16, 2020
Platform:Windows
Requirements:FireEye Endpoint Security 5.0.1+ with xAgent 31+
Size:16.65 MB
MD5:86B772F50881A101AD9349FC50E52C81
SHA1:EA5FCC68B3190FAC1A220C8A2C545D84F1DF1B40
SHA256:8449F09A4EF42C5D56A367C2A9162EBC9C7A54849830DE75030D22F282834446

Similar Apps

Endpoint Security Module
Endpoint Security Module
Endpoint Security Module
Endpoint Security Module