LOG-MD Free Edition is for everyone.  Basic features to help all users harvest valuable log events and baseline files and registry and compare them on suspect systems or your malware lab.  LOG-MD Free Edition includes the following features:

  1. Audit the system log settings

  2. Bypass minimum audit log compliance requirements in order to harvest logs that are enabled and collecting, even if system is non-compliant to the Windows Logging Cheat Sheet

  3. PowerShell version and audit log settings information

  4. Create a report of audit settings

  5. Guide you to enable and configure needed audit log settings required by LOG-MD

  6. Harvest security related log events

a. Creates 14 detailed reports

    7.  Command line summary and detailed WhoIs lookups if IPv4 addresses

    8.  File system hash baseline of all system files

    9. Compare the system files against a baseline and create a report of differences

a. Compare good file system hashes against a suspect system eliminating known good files

    10. Locked Files report to find locked binaries created by malware

    11. Baseline the registry

    12. Compare the registry against a baseline and create a report of differences

a. Compare a good system registry snapshot against a suspect system eliminating known good keys and values

    13. Report of large registry keys hiding malicious scripts and payloads and create a report

     14. Report of AutoRuns to discover new or malicious autoruns


To get started and for help with LOG-MD Free Edition type;

  • LOG-MD -h

Hashes of the Log-MD.exe Free Edition ver 2.1 (Sept 2018):

    MD5: c91bdd8c2f1449d083efacae38f61410
    SHA1: 25fbd55664723f28393c6454c7c35ee7df9955b9
    SHA256: 196b3419f04665645013615d50143a41091d2aca257df7c6b505698c7d2b09ab

Hashes of the Log-MD_32bit.exe Free Edition ver 2.1 (Sept 2018):

    MD5: e6cd9f04255415267be36569fced7fcd
    SHA1: 9943ec2c0a94978cf522b640ef85e67cc2ac1bdd
    SHA256: 6a21cb2b0e38da180237955ccf43e583d101bdc82907d569b49dafa04bf6a8af

----------------------------------------------------------------------------------------------------------------------------------------

Hashes of the Log-MD.exe Free Edition ver 2.0 (Mar 2018):

    MD5: c680cd35614eea7cf49f6a1769d22042
    SHA1: 02110047d17ba105d3c2efd40ebfc03308a7de18
    SHA256: bc2c6da763937690d6e97bd6c2e4ba5891999302ae1fab0c95ae918ba957073b

Hashes of the Log-MD_32bit.exe Free Edition ver 2.0 (Mar 2018):

    MD5: 40ec8bd8c67ed4df5787b5abdefb9422
    SHA1: 59de46f2fdafcf8ef5e3b14e5272471e763e883e
    SHA256: 2fef0fd78ed18213c51d552770957b57073051c83328de7a2510eb26317803e4

----------------------------------------------------------------------------------------------------------------------------------------

Double Opt-in, never sold. Subscribe to get news and updates on LOG-MD and IMF Security.

* indicates required