Alternatives and similar repositories for EventLog-Analyzer

Users that are interested in EventLog-Analyzer are comparing it to the libraries listed below

• piesecurity / WindowsEventsToCSVTimeline
  Simple Powershell scripts to collect all Windows Event Logs from a host and parse them into one CSV timeline.
  ☆32Updated 7 years ago
• EricZimmerman / RegistryExplorerBookmarks
  Registry Explorer bookmark definitions
  ☆43Updated 11 months ago
• danielbohannon / DevSec-Defense
  Accompanying PowerShell Modules for DevSec Defense Presentation
  ☆30Updated 7 years ago
• woanware / JumpLister
  ☆18Updated 12 years ago
• nettitude / logparser
  SQL scripts for querying event logs
  ☆21Updated 8 years ago
• kurtfalde / DNS-Debug
  Script to enabled DNS Debug Logging across Domain Controllers in a Forest and then retrieve for analysis
  ☆14Updated 9 years ago
• kacos2000 / WindowsTimeline
  Windows 10 (v1803+) ActivitiesCache.db parsers (SQLite, PowerShell, .EXE)
  ☆195Updated 2 years ago
• woanware / wmi-parser
  Parses the WMI object database....looking for persistence
  ☆34Updated 6 years ago
• kacos2000 / OtherStuff
  Various Topics
  ☆15Updated 7 months ago
• EricZimmerman / RegistryPlugins
  ☆71Updated 3 months ago
• ceramicskate0 / SWELF
  Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here at ht…
  ☆23Updated 2 years ago
• AlmCo / Panorama
  Fast incident overview
  ☆41Updated 8 years ago
• trustedsec / defensive-scripts
  ☆45Updated 2 years ago
• Invoke-IR / WmiEvent
  A PowerShell module to abstract the complexities of Permanent WMI Event Subscriptions
  ☆55Updated 9 years ago
• trustedsec / tscopy
  ☆94Updated 3 months ago
• woanware / ForensicUserInfo
  Extracts Windows user info including the password hashes
  ☆40Updated 9 years ago
• nesfit / NetfoxDetective
  Network Forensic Extendable Analysis Tool
  ☆39Updated 3 years ago
• SteveUnderScoreN / WindowsFirewall
  PowerShell scripts/GUI tools for the enterprise to harden Windows Defender Firewall via group policy (GPO). These can be used to enforce …
  ☆63Updated 4 years ago
• jschicht / Secure2Csv
  Decode security descriptors in $Secure on NTFS
  ☆21Updated 3 years ago
• EricZimmerman / OleCf
  Library to process OLE compound file format. This is a work in progress and was initially written for jumplist parsing (for which it does…
  ☆19Updated 10 months ago
• byt3bl33d3r / CME-PowerShell-Scripts
  A collection of modifed PowerShell Scripts for CrackMapExec (https://github.com/byt3bl33d3r/CrackMapExec)
  ☆55Updated 6 years ago
• AndrewRathbun / VanillaWindowsRegistryHives
  A repo that contains a recursive dump from the ROOT key of every Windows Registry hive (using KAPE) from a vanilla (clean) install of eve…
  ☆49Updated last month
• randomaccess3 / 4n6_stuff
  Git for me to put all my forensics stuff
  ☆23Updated 3 months ago
• api0cradle / PowershellScripts
  A collection of useful Powershell Scripts that I have created
  ☆46Updated 8 years ago
• kacos2000 / Win10LiveInfo
  Windows 10 Live Information viewer
  ☆37Updated 3 years ago
• r-smith / tcpTrigger
  A windows service that notifies you of incoming network connections
  ☆122Updated 2 years ago
• TonyPhipps / Powershell
  Tony's collection of powershell scripts, typically geared toward cybersec
  ☆34Updated last month
• TrullJ / sticky-keys-scanner
  A PowerShell function that scans for the existence of a Sticky Keys backdoor.
  ☆24Updated 8 years ago
• Kriegel / ComPower
  ComPower is a Windows PowerShell module to work with the Component Object Model (COM).
  ☆31Updated 11 years ago
• libyal / esedb-kb
  Extensible Storage Engine (ESE) Database File Knowledge Base
  ☆46Updated 2 weeks ago