ArcticMyst
Description
ArcticMyst Security is a free open source endpoint detection and response (EDR) tool with an option for additional fee-based threat hunting & monitoring. Elevated permissions are required to install this software. The app monitors process events, registry startup changes, registry pending delete operations, crashing processes, blocks rundll32.exe from using Winsock or calling WSAStartup, and blocks Excel from loading .XLL files. User can temporarily pause the “blocking” options. Systray balloons promptly alert user when registry startup entries change, processes crash, rundll32 calls Winsock/WSAStartup, and when Excel loads XLL files. All events are transmitted to our server for threat hunt analysis.
-
Threat Hunting
-
EDR
-
Cyber Security Monitoring
-
Crash Monitoring
-
XLL Block
-
RunDLL32 Network Block
-
Registry Startup Monitor
-
Process Monitoring
-
Crashing Detection
-
Endpoint Detection and Response
Product ID:
XPDNDSJL64HJPB
Release date:
0001-01-01
Last update:
0001-01-01