Alternatives and similar repositories for EventLog-Analyzer

Users that are interested in EventLog-Analyzer are comparing it to the libraries listed below

• piesecurity / WindowsEventsToCSVTimeline
  Simple Powershell scripts to collect all Windows Event Logs from a host and parse them into one CSV timeline.
  ☆32Updated 7 years ago
• EricZimmerman / RegistryExplorerBookmarks
  Registry Explorer bookmark definitions
  ☆44Updated last year
• nesfit / NetfoxDetective
  Network Forensic Extendable Analysis Tool
  ☆39Updated 3 years ago
• danielbohannon / DevSec-Defense
  Accompanying PowerShell Modules for DevSec Defense Presentation
  ☆30Updated 7 years ago
• ceramicskate0 / SWELF
  Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here at ht…
  ☆24Updated 2 years ago
• gunnarhaslinger / Windows-Defender-Exploit-Guard-Configuration
  Configure Windows Defender ExploitGuard, Reset all ProcessMitigation, Import clean recommended Baseline Configuration
  ☆41Updated 4 years ago
• api0cradle / PowershellScripts
  A collection of useful Powershell Scripts that I have created
  ☆47Updated 9 years ago
• Kriegel / ComPower
  ComPower is a Windows PowerShell module to work with the Component Object Model (COM).
  ☆32Updated 11 years ago
• Invoke-IR / WmiEvent
  A PowerShell module to abstract the complexities of Permanent WMI Event Subscriptions
  ☆55Updated 9 years ago
• woanware / JumpLister
  ☆18Updated 12 years ago
• labcif / YPA
  Autopsy plugin to extract information from the 'Your Phone' Windows 10 App
  ☆14Updated 5 years ago
• zulu8 / Get-Baseline
  PowerShell Script for Agentless Incident Response
  ☆25Updated 7 years ago
• EricZimmerman / RegistryPlugins
  ☆74Updated 3 weeks ago
• kacos2000 / Jumplist-Browser
  Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser
  ☆41Updated last year
• acochenour / PSInspect
  PowerShell script useful for Incident Response and security/configuration baselines for Windows Vista and later
  ☆20Updated 9 years ago
• kacos2000 / WindowsTimeline
  Windows 10 (v1803+) ActivitiesCache.db parsers (SQLite, PowerShell, .EXE)
  ☆196Updated 2 years ago
• randomaccess3 / 4n6_stuff
  Git for me to put all my forensics stuff
  ☆23Updated 5 months ago
• nsacyber / PRUNE
  Logs key Windows process performance metrics. #nsacyber
  ☆69Updated 3 years ago
• trustedsec / tscopy
  ☆97Updated 4 months ago
• jschicht / MftRcrd
  Command line $MFT record decoder
  ☆12Updated 8 years ago
• SteveUnderScoreN / WindowsFirewall
  PowerShell scripts/GUI tools for the enterprise to harden Windows Defender Firewall via group policy (GPO). These can be used to enforce …
  ☆64Updated 4 years ago
• Invoke-IR / Presentations
  ☆29Updated 9 years ago
• SamuelArnold / StarKill3r
  A security repo
  ☆28Updated 8 years ago
• kacos2000 / OtherStuff
  Various Topics
  ☆18Updated 9 months ago
• AndrewRathbun / VanillaWindowsRegistryHives
  A repo that contains a recursive dump from the ROOT key of every Windows Registry hive (using KAPE) from a vanilla (clean) install of eve…
  ☆54Updated 3 months ago
• EricZimmerman / OleCf
  Library to process OLE compound file format. This is a work in progress and was initially written for jumplist parsing (for which it does…
  ☆19Updated last year
• trustedsec / defensive-scripts
  ☆47Updated last month
• BeanBagKing / EventFinder2
  Finds event logs between two time points. Useful for helpdesk/support/malware analysis.
  ☆47Updated 6 years ago
• EricZimmerman / JLECmd
  Automatic and Custom Destinations jump list parser with Windows 10 support
  ☆115Updated 4 months ago
• kacos2000 / Win10LiveInfo
  Windows 10 Live Information viewer
  ☆37Updated 4 years ago