diff --git a/EDR_telem_windows.json b/EDR_telem_windows.json
index e9ae357..6c0c747 100644
--- a/EDR_telem_windows.json
+++ b/EDR_telem_windows.json
@@ -124,6 +124,31 @@
     "Uptycs":"Yes",
     "WatchGuard":"Yes"
   },
+  {
+    "Telemetry Feature Category": null,
+    "Sub-Category": "RPC Event Logging",
+    "BitDefender": "Via EnablingTelemetry",
+    "Carbon Black": "Yes",
+    "Cortex XDR": "Via EventLogs",
+    "CrowdStrike": "Yes",
+    "Cybereason": "Partially",
+    "Cylance": "Partially",
+    "ESET Inspect": "Via EnablingTelemetry",
+    "Elastic": "Via EventLogs",
+    "FortiEDR": "Pending Response",
+    "Harfanglab": "Pending Response",
+    "LimaCharlie": "Yes",
+    "MDE": "Via EventLogs",
+    "OpenEDR": "Pending Response",
+    "Qualys": "Pending Response",
+    "SentinelOne": "Yes",
+    "Symantec SES Complete": "Pending Response",
+    "Sysmon": "Yes",
+    "Trellix": "Pending Response",
+    "Trend Micro": "Pending Response",
+    "Uptycs": "Partially",
+    "WatchGuard": "Pending Response"
+  },
   {
     "Telemetry Feature Category":null,
     "Sub-Category":"Win32 API Telemetry",