Hardens Scripting Iterpreters and Shells against sophisticated attacks.


Excubits CommandLineScannerCommandLineScanner is a forensic analysis driver that detects if executable program files are to be started on your computer. Analyze the automatically created log file periodically to detect possible attacks at an early stage and to take appropriate countermeasures. CommandLineScanner is also able to block executables by their filename or command line parameters enforcing a classic white- and blacklist approach. With appropriate rules you are able to fully control appliactions and the command line options as they are allowed to be started with. This makes CommandLineScanner an extremely powerful tool that you can use to do forensic analysis on, and to protect your Microsoft Windows driven systems.

Installation and configuration

CommandLineScanner can be installed within a few seconds. In addition, our solution works fully transparent in the background, there is no interaction required. Recognized attacks are logged and can be analyzed later. We implemented no black-box design, you can fully peek into the logs and process them as you want and regarding your needs. For example you can install a watchdog to collect and summarize the log files from all your end-points and can turn each and every Windows client into an active attack detection probe.

Use Cases

CommandLineScanner is ideal for use in centrally administered environments, such as in kiosk systems, business, point-of-sale (POS) systems, libraries, schools, or universities. CommandLineScanner is also suitable for analyzing and protecting offline systems like production plants, as no internet connection is required.


  • Runs entirely in the kernel.
  • Catches almost all executables and their command line options.
  • Use as an early warning system.
  • Use to build proactive forensics IT probes, to investigate incidents timely.
  • Extremely efficient driver using an extremely small binary footprint.
  • No annual fees.
  • Fully offline capable, no signature updates required.
  • Can easily be packed and deployed as an MSI package.
  • Works with all popular versions of Microsoft Windows, incl. Windows Server.
  • Made in Germany.
  • No Ads and no Spyware.
  • Use instantly without pesky registration.
  • No information or forensics back channel to Excubits.

License Pricing

CommandLineScanner only costs 12.00EUR (final price acc. § 19, Abs. 1 UStG), you can directly order it using PayPal. To display the purchase button, please read the Terms of Service and accept them by clicking on the check-box below:

I have read and agree with the Terms of Service and want to buy a license.

System requirements

Windows Vista, 7, 8, 8.1 and 10 in its 32-bit and 64-bit versions.

Download CommandLineScanner

Binaries last updated on 2017/04/01

Download the free demo version today and secure up your computers. To display and start the download, please read and accept our Terms of Service below:

I have read and agree with the Terms of Service.