At Velocidex we have been running open source endpoint monitoring tools for our clients in order to detect and respond to incidents. One of our favorite tools is GRR, developed by Google internally and then released as open source. GRR is a very powerful tool, with a polished UI and good documentation.
Category: Endpoint
Category URL: http://www.dfir.training/component/mtree/incident-response/endpoint?Itemid=
