Add polylogyx/PolyMon to DFIR section

2024-12-12 09:34:26 -05:00 · 2020-12-10 16:34:24 +07:00 · 2020-12-10 16:34:24 +07:00 · b5a4c07e09
commit b5a4c07e09
parent 2c2c66f98b
1 changed files with 4 additions and 0 deletions
--- a/README.md
+++ b/README.md
@ -1136,6 +1136,10 @@ This repository is created as an online bookmark for useful links, resources and
        <td><a href="https://github.com/philhagen/sof-elk">philhagen/sof-elk</a></td>
        <td>Configuration files for the SOF-ELK VM, used in SANS FOR572</td>
    </tr>
+    <tr>
+        <td><a href="https://github.com/polylogyx/PolyMon">polylogyx/PolyMon</a></td>
+        <td>PolyLogyx Monitoring Agent (PolyMon) is a Windows software that leverages the osquery tool and the PolyLogyx Extension to osquery, to provide a view into detailed information about process creations, network connections, file system changes and many other activities on the system.</td>
+    </tr>
    <tr>
        <td><a href="https://github.com/ptresearch/AttackDetection">ptresearch/AttackDetection</a></td>
        <td>The Attack Detection Team searches for new vulnerabilities and 0-days, reproduces it and creates PoC exploits to understand how these security flaws work and how related attacks can be detected on the network layer. Additionally, we are interested in malware and hackers’ TTPs, so we develop Suricata rules for detecting all sorts of such activities.</td>