Fibratus is a modern tool for Windows kernel exploration and observability with a focus on security. It allows trapping system-wide events like process life-cycle, file system I/O, registry modifications, and network requests, providing deep operational visibility into the Windows kernel and running processes. Events can be shipped to various output sinks or captured for local inspection and forensics analysis, with a powerful filtering engine and rules engine for threat detection. Users can extend Fibratus using filaments to leverage the Python ecosystem.

Fibratus Description

Security Operations/Digital Forensics and Incident Response

Observability

Windows

Linux

Fibratus Images

No Gallery Images

This tool doesn't have any gallery images yet. Check the tool's official website or documentation for screenshots and visual information.

Fibratus Features

Unlock all features

Fibratus Integrations

Unlock all integrations

NIST CSF 2.0 Mapping

Access NIST CSF 2.0 data from thousands of security products via MCP to assess your stack coverage.

Access via MCP

No reviews yet

Be the first security professional to share your experience with Fibratus. Your review helps CISOs and security teams make better decisions.

Fibratus Vendor Resources

No Resources Listed

This tool doesn't have any vendor resources listed yet. Check the tool's official website for documentation, whitepapers, and other resources.

Fibratus FAQ

Common questions about Fibratus including features, pricing, alternatives, and user reviews.

What is Fibratus?

Fibratus is A modern tool for Windows kernel exploration and observability with a focus on security. It is a Security Operations solution designed to help security teams with Observability, Windows, Linux.

What is the pricing for Fibratus?

What are alternatives to Fibratus?