IEEE

iCNN-LSTM+: A Batch-Based Incremental Ransomware Detection System Using Sysmon

Abstract: Ransomware remains a persistent and evolving cyber threat, requiring adaptive and efficient detection mechanisms. This study presents a novel CNN-LSTM-based detection system that leverages ...
GitHub

ntTraceControl -- Powershell Event Tracing Toolbox

ntTraceControl is a set of Powershell commands to forge/generate Windows logs. Simply put, ntTraceControl supports Detection teams by simplifying the testing of detection use cases and alerts without ...
GitHub

Sysmon - lightweight platform monitoring for Java VMs

Sysmon is a lightweight platform monitoring tool. It's designed to gather performance data (CPU, disks, network, etc.) from the host running the Java VM. This data is gathered, packaged, and published ...