Procmon for Linux

Free

Procmon for Linux (Procmon) is a Linux reimagining of the classic Procmon tool from the Sysinternals suite of tools for Windows, providing a convenient and efficient way for Linux developers to trace the syscall activity on the system. Installation & Usage Requirements: OS - Ubuntu 18.04 LTS, cmake >= 3.14 (build-time only), libsqlite3-dev >= 3.22 (build-time only). To install Procmon, follow the distribution-specific steps provided in the install instructions. Building Procmon from source requires installing build dependencies and running specific commands. Procmon Packages can be built using cpack, and usage involves various options like monitoring process IDs and system calls.

FEATURES

The author has not provided features for this tool yet. If you are the author, please sign in or claim the tool to add features by clicking the icon above.

ALTERNATIVES

WELA (Windows Event Log Analyzer)

Windows Event Log Analyzer with logon timeline generator and noise reduction for fast forensics.

Free

SIEM

Apache Metron

Apache Metron is a centralized tool for security monitoring and analysis that integrates various open-source big data technologies.

Free

SIEM

GrokEVT

GrokEVT is a tool for reading Windows event log files and converting them to a human-readable format.

Free

SIEM

LogRhythm Axon

A cloud-native SIEM platform that provides security analytics, intuitive workflow, and simplified incident response to help security teams defend against cyber threats.

Commercial

SIEM

LogSlash

A method for log volume reduction without losing analytical capability.

Free

SIEM

syslog-ng

A log management solution that optimizes SIEM performance, provides rapid search and troubleshooting, and meets compliance requirements.

Commercial

SIEM

AWS CloudTrail

Track user activity and API usage on AWS and in hybrid and multicloud environments.

Free

SIEM

StreamAlert

Serverless, real-time data analysis framework for incident detection and response.

Free

SIEM

PINNED

InfoSecHired

An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Commercial

Resources

Fabric Platform by BlackStork

Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.

Free

Security Operations

Mandos Brief Newsletter

Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.

Free

Blogs and News

System Two Security

An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.

Commercial

Security Operations

Aikido Security

Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.

Commercial

Application Security

Permiso

Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.

Commercial

IAM

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial

Cloud Security

Adversa AI

Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.

Commercial

AI Security