Alternatives and similar repositories for windows-event-id-list-csv

Users that are interested in windows-event-id-list-csv are comparing it to the libraries listed below

• YossiSassi / hAcKtive-Directory-Forensics
  ☆53Updated 3 months ago
• kacos2000 / Evtx_Log_Browser
  Evtx Log (xml) Browser
  ☆57Updated 2 years ago
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆97Updated 3 years ago
• kacos2000 / WinEDB
  Windows.EDB Browser
  ☆60Updated 2 years ago
• EricZimmerman / Srum
  ☆50Updated last month
• huebicode / abuselookup-gui
  A GUI to query the API of abuse.ch.
  ☆70Updated 3 years ago
• yarox24 / EvtxHussar
  Initial triage of Windows Event logs
  ☆105Updated last year
• knight0x07 / OneNoteAnalyzer
  A C# based tool for analysing malicious OneNote documents
  ☆118Updated 2 years ago
• bobby-tablez / Enable-All-The-Logs
  This script enhances endpoint logging telemetry for the purpose of advanced malware threat detection or for building detections or malwar…
  ☆38Updated 9 months ago
• MHaggis / SDDLMaker
  The home of the SDDLMaker
  ☆28Updated last year
• kacos2000 / Prefetch-Browser
  Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's
  ☆63Updated last year
• NetSPI / PowerHunt
  PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.
  ☆71Updated last year
• harelsegev / prefetch-hash-cracker
  A small util to brute-force prefetch hashes
  ☆77Updated 3 years ago
• DCScoder / ESXiTri
  ESXi Cyber Security Incident Response Script
  ☆25Updated last year
• MHaggis / notes
  Full of public notes and Utilities
  ☆130Updated 2 weeks ago
• kacos2000 / WindowsTimeline
  Windows 10 (v1803+) ActivitiesCache.db parsers (SQLite, PowerShell, .EXE)
  ☆195Updated 2 years ago
• jklepsercyber / defender-detectionhistory-parser
  A parser of Windows Defender's DetectionHistory forensic artifact, containing substantial info about quarantined files and executables.
  ☆115Updated 3 years ago
• moaistory / WinSearchDBAnalyzer
  http://moaistory.blogspot.com/2018/10/winsearchdbanalyzer.html
  ☆127Updated last year
• lxndrblz / forensicsim
  A forensic open-source parser module for Autopsy that allows extracting the messages, comments, posts, contacts, calendar entries and rea…
  ☆114Updated this week
• rapid7 / Rapid7-Labs
  Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence…
  ☆75Updated last month
• alwashali / detection-validation
  Detection rule validation
  ☆40Updated 2 years ago
• CyberDefend3r / PowerShell-Deobfuscation-Exercise
  An exercise to practice deobfuscating PowerShell Scripts.
  ☆26Updated 2 years ago
• strontic / strontic.github.io
  Security. Automation. Analytics.
  ☆58Updated 2 years ago
• EricZimmerman / MFT
  MFT parser
  ☆74Updated 11 months ago
• haim-n / Windows-Security-Assessment
  Assess Windows OS for security misconfigurations and hardening opportunities.
  ☆35Updated last year
• EricZimmerman / RBCmd
  Recycle bin artifact parser
  ☆57Updated 11 months ago
• trustedsec / tscopy
  ☆97Updated 4 months ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆42Updated 2 years ago
• alpine-sec / SPECTR3
  Forensic tool for acquisition, triage and analysis of remote block devices via iSCSI protocol.
  ☆43Updated last year
• ScarredMonk / PopulateActiveDirectory
  Powershell script to build active directory forest and populate AD with random AD objects including AD users objects, computers objects, …
  ☆39Updated 4 years ago