EzFIM is a lightweight, simplified solution to detecting changes to your critical files or registry keys on Windows and Linux servers, POS systems, and workstations that are being targeted by today’s APT attacks.
EzFIM provides a cost-effective alternative to other expensive File Integrity Monitoring (FIM) solutions and is designed with compliance requirements like PCI-DSS 11.5 in mind.
- Highly Customizable
- Monitor Windows Registry
- Windows and Linux (32 and 64 bit)
- Minimal Resource Footprint
- Send Over UDP or TCP
- Agent Based
How It Works
EzFIM can be customized to monitor files and registry keys that YOU define as critical. These critical items are monitored for any modifications, deletions, or creations. Once one of these actions has been detected, it triggers a syslog to be sent to your logging solution that contains data on what happened. By sending alerts as syslog over UDP or TCP, EzFIM can leverage your existing infrastructure for alerts and reports without forcing you to learn a new system.
Since EzFIM utilizes existing infrastructure, there is no need to purchase costly hardware just to deploy a simple FIM solution. This also means that there is no need to learn an entirely new management system and instead makes use of your existing logging or SIEM solution, saving you time and money on training.