Monitor WEL in real-time
Monitor Windows Event Logs in real-time and craft custom rules to pinpoint malicious behavior.
LimaCharlie excels at capturing and analyzing Windows Event Logs (WEL) in real-time. Ingested WEL data is indexed against common indicators of compromise (IoCs) and processed through the LimaCharlie Detection & Response (D&R) engine. D&R rules can be applied to artifacts as they're ingested or retroactively across historical data.
