Wazuh is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity monitoring, policy monitoring, rootkit detection, real-time alerting, active response, ...
No VM, no setup hassle, no leftover clutter afterward.
And it's surprisingly good at running modern PC titles ...