FreeEndpoint Defense & Response

Tested on Windows 10, Server 2012R2 to 2019
Protects endpoints from non-escalated file-based PE Malware (EXE/DLL) & Office-macro malware
Detects Living-Off-The-Land offensive techniques without hard-coded rules
Responds by automated or backend triggered malicious process termination

It leverages the following components & reports to an FreeEDR server (click to find out more).

Sysmon

For non-Internet facing endpoints, please download Sysmon, modifiy install.ps1 accordingly & host within your internal web-server.

This is an archived version of NXLog-CE tested with FreeEDR client agents. For commercial deployments, please contact NXLOG for commercial license.

Name	Name	Last commit message	Last commit date
Latest commit jymcheong new agents with LOLBin protection Oct 12, 2022 a6ffd41 · Oct 12, 2022 History 38 Commits
configurations	configurations	still have to rename & test	Nov 22, 2021
Deploy.zip	Deploy.zip	new agents with LOLBin protection	Oct 12, 2022
Eula.txt	Eula.txt	still have to rename & test	Nov 22, 2021
NXLOG_CE_LICENSE	NXLOG_CE_LICENSE	still have to rename & test	Nov 22, 2021
README.md	README.md	Update README.md	Apr 4, 2022
Sysmon.exe	Sysmon.exe	still have to rename & test	Nov 22, 2021
Sysmon1042.zip	Sysmon1042.zip	still have to rename & test	Nov 22, 2021
changelog.md	changelog.md	still have to rename & test	Nov 22, 2021
createInstallerZip.ps1	createInstallerZip.ps1	added whitelist.ps1	Nov 25, 2021
install.ps1	install.ps1	Update install.ps1	Aug 25, 2022
install.ps1.Sysmon11	install.ps1.Sysmon11	still have to rename & test	Nov 22, 2021
installer.zip	installer.zip	remove macro child process kill	Apr 4, 2022
nxlog-ce-2.10.2150.msi	nxlog-ce-2.10.2150.msi	still have to rename & test	Nov 22, 2021
setup.msi	setup.msi	remove macro child process kill	Apr 4, 2022
smconfig.xml	smconfig.xml	Update smconfig.xml	May 20, 2022
smconfig.xml.Sysmon11	smconfig.xml.Sysmon11	still have to rename & test	Nov 22, 2021
uninstall.ps1	uninstall.ps1	tested custom context menu removal	Nov 29, 2021
updateInstaller.bat	updateInstaller.bat	still have to rename & test	Nov 22, 2021
whitelist.ps1	whitelist.ps1	added whitelist.ps1	Nov 25, 2021