LOG-MD Free Edition is for everyone.  Basic features to help all users harvest valuable log events and baseline files and registry and compare them on suspect systems or your malware lab.  LOG-MD Free Edition includes the following features:

  1. Audit the system log settings
  2. Bypass minimum audit log compliance requirements in order to harvest logs that are enabled and collecting, even if system is non-compliant to the Windows Logging Cheat Sheet
  3. PowerShell version and audit log settings information
  4. Create a report of audit settings
  5. Guide you to enable and configure needed audit log settings required by LOG-MD
  6. Harvest security related log events

a. Creates 14 detailed reports

    7.  Command line summary and detailed WhoIs lookups if IPv4 addresses

    8.  File system hash baseline of all system files

    9. Compare the system files against a baseline and create a report of differences

a. Compare good file system hashes against a suspect system eliminating known good files

    10. Locked Files report to find locked binaries created by malware

    11. Baseline the registry

    12. Compare the registry against a baseline and create a report of differences

a. Compare a good system registry snapshot against a suspect system eliminating known good keys and values

    13. Report of large registry keys hiding malicious scripts and payloads and create a report

     14. Report of AutoRuns to discover new or malicious autoruns


To get started and for help with LOG-MD Free Edition type;

  • LOG-MD -h

Hashes of the Log-MD.exe Free Edition ver 2.0 (Mar 2018):

    MD5: c680cd35614eea7cf49f6a1769d22042
    SHA1: 02110047d17ba105d3c2efd40ebfc03308a7de18
    SHA256: bc2c6da763937690d6e97bd6c2e4ba5891999302ae1fab0c95ae918ba957073b

Hashes of the Log-MD_32bit.exe Free Edition ver 2.0 (Mar 2018):

    MD5: 40ec8bd8c67ed4df5787b5abdefb9422
    SHA1: 59de46f2fdafcf8ef5e3b14e5272471e763e883e
    SHA256: 2fef0fd78ed18213c51d552770957b57073051c83328de7a2510eb26317803e4

----------------------------------------------------------------------------------------------------------------------------------------

Hashes of the Log-MD.exe Free Edition ver 1.2 (July 2017):

  • MD5:  945E38C265B76B9BAFD79B31CEB08465
  • SHA1:  6E7F5E2609135F3C8CAD7D2D03F152F625F326BF
  • SHA256: 136009148FC5C07AC497C924F8FFF12A26301F54F86CA69E1D5BFDA0783E72F1

Hashes of the Log-MD_32bit.exe Free Edition ver 1.2 (July 2017):

  • MD5:  D4FE2F0FFF588B05688F53E9344EFAB1
  • SHA1:  0604F562D54B2CC515BFD14368B1768B79F2C607
  • SHA256: 31329E0F8D57151D9CBD9CC27E7FE94BA0A55EF5B84AE4248FAF03F5FAB7DCD0

Double Opt-in, never sold. Subscribe to get news and updates on LOG-MD and IMF Security.

* indicates required