LogonTracer Versions Save

Investigate malicious Windows logon by visualizing and analyzing Windows event log

v1.6.1

5 months ago

Update

  • Updated to display all logs in Timeline graph #130
  • Updated bootstrap4-toggle to bootstrap5-toggle
  • Updated neo4j-driver 4.4.10 to 4.4.11
  • Updated bootstrap 5.0.1 to 5.3.2
  • Supported SQLAlchemy 1.4

Bug fix

  • Fixed a bug can't import evtx using pandas 2.0 (issue #135)
  • Fixed a bug that docker-compose build error on M1 Mac #131

v1.6.0

1 year ago

New

  • Added login page
  • Added SSL support
  • Added case management function
  • Added user management function
  • Added the Sigma rule scan function (Beta)
  • Added configuration file

Update

  • Support neo4j version 4.4
  • Deleted supported Python version 3.6

Bug fix

  • Fixed a bug that hmmlearn 0.2.8 could not load old pkl file (issue #127)
  • Fixed a bug where tooltip was hidden in modal
  • Fixed a bug where modal was hidden in navbar
  • Fixed a bug that caused parse status to over 100% (issue #115)
  • Fixed a bug that did not error when time zone was not set (issue #130)

v1.5.4

2 years ago

Update

  • Changed Bootstrap version from 4 to 5
  • Updated to support py2neo 2021.1

v1.5.3

2 years ago

Update

  • Updated datetime format function from strftime to timestamp

Bug fix

  • Fixed a bug where logtime could not be parsed

v1.5.2

3 years ago

Update

  • Updated to support scikit-learn 0.24

Bug fix

  • Fixed a bug that can not load additional timezone log

v1.5.1

3 years ago

Update

  • Updated JavaScript plugins version

Bug fix

  • Fixed Elasticsearch authentication status 401
  • Fixed guid init process

v1.5.0

3 years ago

New

  • Supported Elasticsearch (Thanks @0xThiebaut)

Update

  • Fixed a performance issue when importing EVXT file
  • Changed optional date format
  • Support for py2neo 2020.0.0

Bug fix

  • Fixed a bug at graph diff function

v1.4.2

3 years ago

New

  • Supported docker compose

Update

  • Updated search query regular expression to CONTAINS
  • Changed to set the IP address of neo4j server to option when uploading event log from Web GUI

Bug fix

  • Fixed a bug that could not search path to system privilege

v1.4.1

3 years ago

New

  • Supported neo4j version 4.1
  • Added port setting option for websocket

Update

  • Changed neo4j-driver version 1.7.6 to 4.1.1

Bug fix

  • Fixed a bug that py2neo could not get the kernel version of neo4j

v1.4.0

4 years ago

New

  • Added Dark Mode
  • Added the function to add log files
  • Added support for py2neo v4
  • Added support for Python3.7

Update

  • Changed Bootstrap version 3 to 4
  • Updated Dockerfile
  • Updated to display neo4j version
  • Changed node name from hostname to IP address
  • Updated the method to check if the event log to be visualized is in the EVTX file

Bug fix

  • Fixed a bug that timeline date was shifted
  • Fixed a bug that Cypher query SyntaxError
  • Fixed an issue where the event log count was wrong
  • Fixed performance issues when loading large XML files