Version 1.2 of LOG-MD-Professional has been released adding the following features:
- AutoRuns Report - Take an Autoruns report and apply a Master-Digest that you create with LOG-MD-Pro to eliminate known good files and then apply an Autoruns Whitelist to further exclude Autoruns that have parameters that the Master-Digest cannot exclude.
- Locked Files Report - As a part of the Hash Compare a Locked Files report is generated to help discover malicious locked binaries.
- DNS Client Event logs are now an option to be collected. Gather that DNS info for potential blocking or further investigation of suspect domains.
- Minor bug fixes
- Updated Manual with lots of details
Watch our videos to help you learn about LOG-MD, what it can do, and actual Malware Discovery hunting using LOG-MD, including so called "Fileless or non-malware malware"