ITM is an open framework - Submit your contributions now.

Insider Threat Matrix™

DT037

auditd File Access - DT037

Contributor: The ITM Team @ - Detection DT037
DT038

Windows Recycle Bin - DT038

Contributor: The ITM Team @ - Detection DT038
DT039

Web Proxy Logs - DT039

Contributor: The ITM Team @ - Detection DT039
DT040

Microsoft Exchange Message Trace - DT040

Contributor: The ITM Team @ - Detection DT040
DT041

Email Gateway - DT041

Contributor: The ITM Team @ - Detection DT041
DT042

Network Intrusion Detection Systems - DT042

Contributor: The ITM Team @ - Detection DT042
DT043

Sysmon Process Create Event - DT043

Contributor: The ITM Team @ - Detection DT043
DT044

Linux dpkg Log - DT044

Contributor: The ITM Team @ - Detection DT044
DT045

Agent Capable of User Activity Monitoring - DT045

Contributor: The ITM Team @ - Detection DT045
DT046

Agent Capable of Endpoint Detection and Response - DT046

Contributor: The ITM Team @ - Detection DT046
12...33343536373839404142