EvtXHunt is an Autopsy plugin that is able to analyze Windows EVTX logs against a library of SIGMA rules.
☆15Nov 7, 2021Updated 4 years ago
Alternatives and similar repositories for EvtXHunt
Users that are interested in EvtXHunt are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆10May 1, 2020Updated 5 years ago
- no longer maintained☆18Feb 22, 2018Updated 8 years ago
- ☆11Jan 28, 2025Updated last year
- Autopsy NBM Plugins☆18Jul 9, 2023Updated 2 years ago
- Autopsy Module to analyze Registry Hives☆16Feb 18, 2022Updated 4 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- ☆17Apr 13, 2018Updated 7 years ago
- Autopsy plugin to extract information from the 'Your Phone' Windows 10 App☆14Jan 6, 2021Updated 5 years ago
- A series of Linux and Windows based Forensics labs. Tools used include: FTK, EnCase, Sleuthkit, Autopsy, Volatility, etc.☆14Sep 17, 2020Updated 5 years ago
- Various short scripts and tools used for Digital Forensics☆14Apr 13, 2025Updated 11 months ago
- CONTROL C2 is a command and control framework designed for red teamers and penetration testers.☆15Oct 16, 2024Updated last year
- Challenges for NUS Greyhats CTF101 Web Security (2017)☆17Sep 9, 2017Updated 8 years ago
- DataContentViewer module for Autopsy 3.1 to preview dozens of file types☆30Oct 28, 2020Updated 5 years ago
- Simple command that publishes Notion Page to Medium.☆20Mar 28, 2023Updated 2 years ago
- Initial triage of Windows Event logs☆106Jun 16, 2024Updated last year
- Wordpress hosting with auto-scaling on Cloudways • AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- Digital forensics on a complete OS data-image captured from an Apple iPhone. The collected evidence showed criminal conspiracy with inten…☆25Aug 30, 2021Updated 4 years ago
- A Shadow plug-in that runs the Bitcoin Satoshi reference software☆25Feb 20, 2020Updated 6 years ago
- ☆18Apr 8, 2021Updated 4 years ago
- CLI tool written in Go to generate Canary Tokens from https://canarytokens.org☆13Aug 22, 2025Updated 7 months ago
- HITB SECCONF CTF 2022. Developed with ❤️ by Hackerdom team and HITB.☆20Aug 26, 2022Updated 3 years ago
- Thor Artifacts for Velociraptor☆19Dec 2, 2025Updated 3 months ago
- A Gradle plugin for testing compatibility with various versions on Gradle.☆14Feb 22, 2018Updated 8 years ago
- Custom CTFd live scoreboard, originally made for GCTF2017 | Featured on Rawsec's http://list.rawsec.ml/ctf_platforms.html☆23Apr 10, 2018Updated 7 years ago
- Slides from Off-By-One Conferences☆34Sep 9, 2024Updated last year
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Asynchronous public DNS auditing tool☆11May 22, 2023Updated 2 years ago
- Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE☆33May 25, 2024Updated last year
- This repository lists all active Microsoft domains | no URLs and no sub-domains | for the purpose of Whitelisting in various systems and …☆44Jan 8, 2026Updated 2 months ago
- LEKIR - Vulnerable by design to help people learn about common web security☆30Mar 9, 2026Updated 2 weeks ago
- Is a portable forensic tool for analyzing Windows logs, pre-organized according to the methodology outlined in this job: https://cybersec…☆15Jul 19, 2025Updated 8 months ago
- ☆13May 30, 2025Updated 9 months ago
- The official Prelude SIEM GitHub of https://www.prelude-siem.org☆42Jun 12, 2016Updated 9 years ago
- Ransomware Detection Test PowerShell Script☆11Sep 22, 2017Updated 8 years ago
- I was not satisfied with Python syntax highlighting and so I decided to modify python.vim to duplicate the highlighting in Textmate☆41Mar 23, 2020Updated 6 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Car Hacking Village Philippines Repository☆44Oct 2, 2025Updated 5 months ago
- A forensic open-source parser module for Autopsy that allows extracting the messages, comments, posts, contacts, calendar entries and rea…☆117Jan 19, 2026Updated 2 months ago
- Detect the possible hash-types corresponding to a string, right from your terminal.☆11Jan 5, 2023Updated 3 years ago
- Using PowerShell to quickly scan through the SYSVOL share for exposed credentials within auto logon policies.☆14Nov 30, 2022Updated 3 years ago
- A simple `Secret` wrapper type that reveals the secret at most `N: typenum::Unsigned` (i.e. unsigned integer) times with compile time gua…☆18Jul 18, 2024Updated last year
- Application for detecting command and control (C2) communication through network traffic analysis.☆15May 12, 2023Updated 2 years ago
- 1 Byte Currency ISO type for PostgreSQL☆19Mar 14, 2025Updated last year