☆58Sep 17, 2025Updated 5 months ago
Alternatives and similar repositories for wincollect
Users that are interested in wincollect are comparing it to the libraries listed below
Sorting:
- QRadar AQL backend for converting Sigma rules to QRadar AQL queries☆14Sep 18, 2025Updated 5 months ago
- Samples code that uses QRadar API's☆209May 20, 2020Updated 5 years ago
- Using QRadar API☆20Feb 23, 2018Updated 8 years ago
- This repository bundles various utilities and scripts I built for use with IBM QRadar SIEM☆16Jan 30, 2026Updated last month
- Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.☆87May 8, 2025Updated 9 months ago
- SQL scripts for querying event logs☆21Jul 12, 2017Updated 8 years ago
- These workflows are provided for sample usage, new submissions and updates from the community, and are NOT supported by IBM.☆51Updated this week
- Windows Thingies in Python for live use.☆24Apr 22, 2019Updated 6 years ago
- QRadar Export the rule set for printing☆23Oct 23, 2017Updated 8 years ago
- Download a list of suspected malicious IPs and Domains. Create a QRadar Reference Set. Search Your Environment For Malicious IPs☆69Aug 13, 2021Updated 4 years ago
- A repository for using windows event forwarding for incident detection and response☆1,299Sep 8, 2025Updated 5 months ago
- Google Cloud Security Command Center to Azure Sentinel Connector☆19Jul 15, 2023Updated 2 years ago
- Build a domain with three quick PowerShell scripts!☆29Jun 3, 2020Updated 5 years ago
- Convert libvirt-QEMU-save (LQS) files to raw memory files☆38Aug 9, 2023Updated 2 years ago
- Pulls IOCs from MISP and adds the to reference sets in QRadar☆34Apr 20, 2023Updated 2 years ago
- Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsac…☆883Nov 17, 2020Updated 5 years ago
- It is based on bulk_extractor (https://github.com/simsong/bulk_extractor) and add scanners for record carving☆42Apr 23, 2020Updated 5 years ago
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆40May 18, 2022Updated 3 years ago
- A repository of sysmon configuration modules☆2,987Aug 21, 2024Updated last year
- Incognito Proxy chrome extension☆10Sep 27, 2023Updated 2 years ago
- keep files☆13Sep 22, 2017Updated 8 years ago
- ☆10Mar 3, 2023Updated 3 years ago
- This project attempts to classify the entries in the Microsoft Malware Classification Challenge dataset using random forests.☆11Dec 22, 2016Updated 9 years ago
- Live share text/code with others☆12Mar 4, 2021Updated 5 years ago
- ☆29Updated this week
- Examples for the CyCLI Powershell module☆12Mar 8, 2019Updated 6 years ago
- git snapshot of camstudio hg repo ( http://sourceforge.net/scm/?type=hg&group_id=131922 )☆16Sep 19, 2011Updated 14 years ago
- Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and en…☆44Sep 22, 2024Updated last year
- Log Entry to Sigma Rule Converter☆107Mar 3, 2022Updated 4 years ago
- A curated list of CTF frameworks, libraries, resources and softwares☆10Nov 11, 2015Updated 10 years ago
- A Java Chess Engine☆17Oct 30, 2020Updated 5 years ago
- ☆12Apr 20, 2025Updated 10 months ago
- Server to view ClickHouse profiler data in speedscope.app☆11Dec 24, 2019Updated 6 years ago
- Concise, powerful asynchronous flow control library for JavaScript☆84Jun 29, 2017Updated 8 years ago
- ☆15Oct 29, 2024Updated last year
- ☆12Mar 24, 2018Updated 7 years ago
- A book about how to conduct digital forensic investigations with free and open source tools.☆11Apr 30, 2014Updated 11 years ago
- A bunch of lua dissectors for Wireshark that support iNet-X and IENA packet formats☆16Jan 28, 2026Updated last month
- 🦉🔬A small PowerShell tool for finding information quickly on malicious IPs or FQDNs. Powershell threat hunting.☆11Jan 9, 2020Updated 6 years ago