Logon Tracker Module

Logon Tracker is an HX Innovation Architecture module designed to enable the investigation of lateral movement within Windows enterprise environments. Logon Tracker improves the efficiency of investigating lateral movement by aggregating historical activity and monitoring new activity. This data is presented in a user interface designed for analyzing investigative leads (e.g., a compromised account) and hunting for suspicious activity (e.g., RDP activity by privileged accounts). Additionally, Logon Tracker can generate HX alerts for suspicious lateral movement using user-defined alerting rules.

This technical preview release of Logon Tracker is supported on Endpoint Security 5.0.1 with xAgent 31.

As this is a tech preview module, the usual support SLAs don’t apply to the module. You can also provide feedback to the module team through the email listed below.

Authentication RequiredDownloading this app requires a FireEye subscription to use and is only accessible for FireEye users with an active FireEye Support account. If you already have an account, please . Otherwise, please Request Support Access or Contact Sales to learn more about becoming a FireEye customer.

Module Info

Last Updated:September 16, 2020
Requirements:FireEye Endpoint Security 5.0.1+ with xAgent 31+
Size:16.65 MB

Similar Apps

Endpoint Security Module
Endpoint Security Module
Endpoint Security Module
Endpoint Security Module