NTFS Change Auditor is a Change and Access Auditing tool to track and audit all user accesses and changes made to NTFS Shares, Folders and files in your servers and workstations. The tool audits all changes by collecting events in real time from the Security Event log and reporting who accessed what, what exactly changed and when the change was made. The NTFS Change Auditor also maintains a complete history of all changes made.
Share Activity Reports on NTFS Shares such as (accessed, created, modified and deleted) with valuable information like when and who made the changes along with Share Name, Local Path and Client Address etc.
Folder and File Access and Change Reports such as (accessed (read), created, modified, deleted and ownership changes) with what exactly is changed, along with Old Value and New Value, when the change was made, where the change was made in File System and who made the changes in the File System.
Permissions Change Reports and Ownership Change Reports with what exactly is changed, along with Old Value and New Value, when the change was made, where the change was made in File System and who made the changes in the File System.
History of several years of change and user access data in a SQL database for security, forensic analysis and compliance purposes.
Real Time Alerts through emails about audit change events to Shares, Folders and files in your server and workstations, as soon as they occur.
Integrated Data collection from Security Event Logs of multiple hosts for the configured event IDs.
Powerful Search queries to search your entire Change History - search for event IDs, date range, host names and free text.
Live Monitor to view the occurrence of all the configured event IDs for accesses and changes as soon as they occur.
Cleanup of Change History using powerful Search criteria - search for event IDs, date range and host names.
The Live Monitor tool allows you to view the occurrence of all the events for Event IDs configured.
15 Days Free Trial