An Incident Response tool that visualizes historic process execution evidence (based on Event ID 4688 - Process Creation Event) in a tree view.
-
Updated
Jan 30, 2018 - Python
An Incident Response tool that visualizes historic process execution evidence (based on Event ID 4688 - Process Creation Event) in a tree view.
Process call tree memoization tool using strace. Written in Python 3.
Cross-platform scripts developed in Python3 for fetching and providing runtime CPU, RAM, PIDs, OS and system information.
Embeds a secret message into a process tree.
Add a description, image, and links to the process-tree topic page so that developers can more easily learn about it.
To associate your repository with the process-tree topic, visit your repo's landing page and select "manage topics."