ArnaudLoos / Logstash-WinEventlog
A Logstash grok filter to parse and tokenize the message field of Windows eventlog entries.
☆13Updated 8 years ago
Related projects: ⓘ
- Example configuration files for Logstash☆45Updated 4 years ago
- Elastic Beat for fetching and shipping Office 365 audit events☆66Updated 4 years ago
- A collection of Splunk dashboard templates.☆13Updated 5 years ago
- ☆37Updated 4 years ago
- Threat Hunting with ELK Workshop (InfoSecWorld 2017)☆64Updated 6 years ago
- PowerShell Script for Windows Server Compliance / Security Configuration Audit☆61Updated 8 years ago
- Sysmon and wazuh integration with Sigma sysmon rules [updated]☆60Updated 3 years ago
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 3 years ago
- This repository was created to aid in the deployment/maintenance of the Sysmon service on a large number of computers.☆82Updated last year
- A collection of Cortex Analyzers and Responders for TheHive/Cortex☆13Updated 4 years ago
- Sysmon Splunk App☆46Updated 6 years ago
- Create alerts in The Hive from your Graylog alerts, to be turned into Hive cases.☆44Updated 4 years ago
- ☆16Updated 4 years ago
- Ansible role for installing Sysmon with popular config files included.☆24Updated last year
- ☆19Updated 5 years ago
- Deploy and maintain Symon through the Splunk Deployment Sever☆31Updated 4 years ago
- PowerShell - Endpoint Analysis Solution Your Windows Intranet Needs☆47Updated 7 months ago
- ☆39Updated this week
- Find accounts using common and default passwords in Active Directory.☆65Updated 5 years ago
- ☆47Updated 4 years ago
- A PowerShell Script which audits your Windows Workstation or Server either as a singe machine or en-mass☆88Updated 7 years ago
- Secure and log *available* activities in your Microsoft Office 365 environment☆37Updated 6 years ago
- A series of scripts☆95Updated 2 years ago
- Specific guidance and configuration scripts based on Microsoft-recommended security configuration baselines for Windows.☆9Updated 4 years ago
- ☆18Updated 7 years ago
- Sysmon configuration☆66Updated 6 years ago
- Ingest Nessus files into Elasticsearch using PowerShell!☆20Updated 4 months ago
- Snapshot, patch, health-check, and potentially roll-back Windows VMs☆31Updated 6 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆51Updated 2 years ago