Active Directory Security Software
Providing insight into user and computer activity
Main
ADVantage
RSAuditor
About Me
Contact Me
Site Map
Quickly identify and contain security incidents on your network
 
All software available here is authored by Steve Chaison and may be used free of charge*
 

The software available on this site helps you get details about processes and related network activity from Windows® hosts. If you already collect information from facilities like firewall and systems logs, network packet capturers and analyzers, etc. then my software can leverage these in incident response and troubleshooting. The applications here do not require other monitoring products in order to operate though. In addition, there is no special add-on software to deploy to the target computers.

 

Computer Requirements

  • Source computer: Windows XP or better running the .Net framework v3.0 or better
  • Target computer: Typical Active Directory® integrated computer running Windows XP or better

Human/User Requirements

  • A solid understanding of IP network communications and computing processes. While I've included usage documentation in each program, there are no in-depth tutorials bundled that explain the output they produce. The output will make sense to those experienced in analyzing and troubleshooting applications behavior and network activity.
  • A connection to the remote target computer with administrative privileges
All software can be easily downloaded from the menu buttons to the left

Identifying specific processes and users associated with problematic, suspicious, or unauthorized network activity on hosts can help you assess the effectiveness of your security controls. Isolating the source of this activity on a company network can sometimes be time consuming and costly. At times, responding to security incidents requires remote assistance and communication between several people. The value that a quick response to a remote security incident can bring to an organization speaks for itself. My software can help streamline security incident response in your Active Directory environment, thereby reducing the potential for further damage.
 
ADVantage Security Monitor (ADVantage) allows you to scan Windows hosts in your Active Directory and retrieve detailed information about processes and related network conversations.
Registry Security Auditor (RSAuditor) is an interactive console application that checks locations in the Windows registry commonly modified by malware or other, possibly objectionable, software.
 
                   *Please note that while this software may be used free of charge, it is not open source. Reverse engineering, disassembly, deconstruction, and modification are not permitted. Simply save the .zip archive to your Windows workstation and copy the contents to a local directory. The executable in each archive runs the program. ADVantage Security Monitor must be activated before it can be used. Just send me an e-mail containing your ADVantage product ID to get your free activation code. You can use the Contact Me page on this site to request your activation code if you'd like.
 
Best regards,
                   Steve Chaison
                   s.chaison@hotmail.com