Alternatives and similar repositories for Flowmira

Users that are interested in Flowmira are comparing it to the libraries listed below

• CrowdStrike / psfalcon
  PowerShell for CrowdStrike's OAuth2 APIs
  ☆436Updated last week
• JSCU-NL / logging-essentials
  A Windows event logging and collection baseline focused on finding balance between forensic value and optimising retention.
  ☆288Updated 4 years ago
• Blumira / Logmira
  Logmira by Blumira has been created by Amanda Berlin as a helpful download of Microsoft Windows Domain Group Policy Object settings.
  ☆62Updated last year
• AustralianCyberSecurityCentre / windows_event_logging
  Windows Event Forwarding subscriptions, configuration files and scripts that assist with implementing ACSC's protect publication, Technic…
  ☆226Updated 8 months ago
• PwC-IR / Business-Email-Compromise-Guide
  The Business Email Compromise Guide sets out to describe 10 steps for performing a Business Email Compromise (BEC) investigation in an Of…
  ☆264Updated 4 years ago
• bk-cs / rtr
  Real-time Response scripts and schema
  ☆119Updated last week
• T0pCyber / hawk
  Powershell Based tool for gathering information related to O365 intrusions and potential Breaches
  ☆892Updated 7 months ago
• keyboardcrunch / sentinelone-queries
  Repository of SentinelOne Deep Visibility queries.
  ☆134Updated 4 years ago
• SwiftOnSecurity / OrgKit
  Provision a brand-new company with proper defaults in Windows, Offic365, and Azure
  ☆614Updated last year
• PerchSecurity / PerchLabs
  PerchLabs threat feed
  ☆16Updated 4 years ago
• LogRhythm-Tools / LogRhythm.Tools
  LogRhythm PowerShell Toolkit
  ☆51Updated 2 months ago
• PwC-IR / Office-365-Extractor
  The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL)
  ☆264Updated 3 years ago
• SwiftOnSecurity / SwiftFilter
  Exchange Transport rules to detect and enable response to phishing
  ☆419Updated 5 years ago
• blackhillsinfosec / EventLogging
  Automation scripts to deploy Windows Event Forwarding, Sysmon, and custom audit policies in an Active Directory environment.
  ☆486Updated 11 months ago
• alexverboon / MDATP
  MDATP
  ☆459Updated last year
• CrowdStrike / falconpy
  The CrowdStrike Falcon SDK for Python
  ☆441Updated last month
• nsacyber / Event-Forwarding-Guidance
  Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsac…
  ☆878Updated 4 years ago
• pe3zx / crowdstrike-falcon-queries
  A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon
  ☆212Updated 5 years ago
• rootsecdev / Microsoft-Blue-Forest
  Creating a hardened "Blue Forest" with Server 2016/2019 Domain Controllers
  ☆263Updated last year
• miriamxyra / EventList
  EventList
  ☆377Updated 4 years ago
• activecm / BeaKer
  Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana
  ☆299Updated last week
• swannman / ircapabilities
  Incident Response Hierarchy of Needs
  ☆465Updated 2 years ago
• invictus-ir / Microsoft-Extractor-Suite
  A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.
  ☆729Updated this week
• p3hndrx / B-B-Shuffle
  Dashboard for conducting Backdoors and Breaches sessions over Zoom.
  ☆116Updated last year
• ANSSI-FR / ADTimeline
  Timeline of Active Directory changes with replication metadata
  ☆515Updated 7 months ago
• vradchenko / PowerShell-SentinelOne
  PowerShell module for SentinelOne API
  ☆28Updated 4 years ago
• Neo23x0 / sysmon-config
  Sysmon configuration file template with default high-quality event tracing
  ☆521Updated last month
• rapid7 / insightvm-sql-queries
  InsightVM helpful SQL queries
  ☆73Updated 8 months ago
• davidhowell-tx / PS-SentinelOne
  PowerShell module for SentinelOne API
  ☆69Updated 2 years ago
• SophosRapidResponse / OSQuery
  ☆87Updated 7 months ago