https://github.com/tsale/EDR-Telemetry
This project aims to compare and evaluate the telemetry of various EDR products.
https://github.com/tsale/EDR-Telemetry
Last synced: 15 days ago
JSON representation
This project aims to compare and evaluate the telemetry of various EDR products.
- Host: GitHub
- URL: https://github.com/tsale/EDR-Telemetry
- Owner: tsale
- Created: 2023-04-01T20:02:33.000Z (about 2 years ago)
- Default Branch: main
- Last Pushed: 2024-10-28T23:49:08.000Z (6 months ago)
- Last Synced: 2024-10-29T15:41:11.380Z (6 months ago)
- Language: Python
- Homepage:
- Size: 1.01 MB
- Stars: 1,666
- Watchers: 52
- Forks: 157
- Open Issues: 12
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
- awesome-lists - EDR Telemetry
README
# EDR Telemetry
[](https://www.edr-telemetry.com)
[](https://github.com/tsale/EDR-Telemetry/wiki/FAQ)
[](http://creativecommons.org/licenses/by-nc/4.0/)
[](https://github.com/tsale/EDR-Telemetry/stargazers)
## 📖 About
A comprehensive comparison of telemetry features from EDR products and endpoint agents like [Sysmon](https://learn.microsoft.com/en-us/sysinternals/downloads/sysmon). This project enables security practitioners to evaluate telemetry capabilities while promoting vendor transparency.
🌐 **[Visit our Website](https://www.edr-telemetry.com)** for the complete comparison and analysis.
📝 Read more about this project in our [initial release blog post](https://detect.fyi/edr-telemetry-project-a-comprehensive-comparison-d5ed1745384b?sk=b5aade1de1afbabf687620a12aa7a581).
## 🎯 Key Features
- Comprehensive telemetry comparison across multiple EDR solutions
- Detailed scoring system for feature evaluation
- Regular updates to reflect the latest capabilities
- Community-driven contributions and verification
## 📊 Telemetry Comparison
Visit our [EDR Telemetry Comparison Table](https://www.edr-telemetry.com) to see:
- Feature-by-feature comparison
- Detailed scoring metrics
- Implementation status
- Latest updates
## 🤝 Contributing
We welcome contributions! Please check our [Contribution Guidelines](https://github.com/tsale/EDR-Telemetry/wiki#contribution-guidelines) for details on how to get involved.
## ⚖️ Scoring System
Our evaluation script assigns scores based on feature implementation:
- ✅ Yes: 1.0
- ⚠️ Partially: 0.5
- 🎚️ Via EnablingTelemetry: 1.0
- 🪵 Via EventLogs: 0.5
- ❌ No: 0.0
- ❓ Pending Response: 0.0
View the complete [scoring breakdown](https://www.edr-telemetry.com/scores.html) on our website.
## ⚠️ Disclaimer
The data presented reflects only the telemetry capabilities of each product, not their detection or prevention capabilities. For more details, please visit our [FAQ page](https://github.com/tsale/EDR-Telemetry/wiki/FAQ#7-what-is-the-scope-of-the-telemetry-comparison-table-for-edr-products).
## 📜 License
This work is licensed under a [Creative Commons Attribution-NonCommercial 4.0 International License](http://creativecommons.org/licenses/by-nc/4.0/).
This means you are free to:
- Share — copy and redistribute the material in any medium or format
- Adapt — remix, transform, and build upon the material
Under the following terms:
- **Attribution** — You must give appropriate credit, provide a link to the license, and indicate if changes were made.
- **NonCommercial** — You may not use the material for commercial purposes without explicit permission from the author.
For commercial use, please [contact us](https://www.edr-telemetry.com/contact).
## ✨ Contributors Wall
Thanks to these amazing contributors:
## Current Primary Maintainers
Kostas - [@kostastsale](https://twitter.com/Kostastsale)