JonMon-Lite: The Remote Agentless EDR Proof-of-Concept for ETW Trace Monitoring
JonMon-Lite is a research proof-of-concept “Remote Agentless EDR” that creates an ETW Trace Session through a Data Collector Set. This session can be created locally or remotely. Events Collected JonMon-Lite collects the following data:...
