Alternatives and similar repositories for windows-event-id-list-csv

Users that are interested in windows-event-id-list-csv are comparing it to the libraries listed below

• huebicode / abuselookup-gui
  A GUI to query the API of abuse.ch.
  ☆70Updated 3 years ago
• EricZimmerman / Srum
  ☆48Updated 9 months ago
• yarox24 / EvtxHussar
  Initial triage of Windows Event logs
  ☆102Updated last year
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆96Updated 3 years ago
• YossiSassi / hAcKtive-Directory-Forensics
  ☆53Updated last month
• NetSPI / PowerHunt
  PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.
  ☆71Updated 10 months ago
• kacos2000 / Evtx_Log_Browser
  Evtx Log (xml) Browser
  ☆55Updated 2 years ago
• moaistory / WinSearchDBAnalyzer
  http://moaistory.blogspot.com/2018/10/winsearchdbanalyzer.html
  ☆124Updated last year
• kacos2000 / Prefetch-Browser
  Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's
  ☆62Updated 10 months ago
• bobby-tablez / Enable-All-The-Logs
  This script enhances endpoint logging telemetry for the purpose of advanced malware threat detection or for building detections or malwar…
  ☆33Updated 6 months ago
• CyberDefend3r / PowerShell-Deobfuscation-Exercise
  An exercise to practice deobfuscating PowerShell Scripts.
  ☆26Updated 2 years ago
• NextronSystems / evtx-baseline
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆81Updated 2 weeks ago
• evild3ad / Get-MiniTimeline
  Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE
  ☆33Updated last year
• EricZimmerman / RBCmd
  Recycle bin artifact parser
  ☆55Updated 8 months ago
• jischell-msft / RemoteManagementMonitoringTools
  Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations
  ☆97Updated 2 months ago
• airbus-cert / ntTraceControl
  Powershell Event Tracing Toolbox
  ☆78Updated 3 years ago
• kev365 / OSDFIR-Lab
  ☆23Updated last month
• thremulation-station / thremulation-station
  Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.
  ☆38Updated last year
• MagnetForensics / Magnet-RESPONSE-PowerShell
  PowerShell scripts for running Magnet RESPONSE forensic collection tool in large enterprises.
  ☆28Updated 9 months ago
• knight0x07 / OneNoteAnalyzer
  A C# based tool for analysing malicious OneNote documents
  ☆116Updated 2 years ago
• DCScoder / ESXiTri
  ESXi Cyber Security Incident Response Script
  ☆25Updated last year
• lxndrblz / forensicsim
  A forensic open-source parser module for Autopsy that allows extracting the messages, comments, posts, contacts, calendar entries and rea…
  ☆104Updated last week
• Bert-JanP / Domain-Response
  Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…
  ☆49Updated last month
• anyrun / YARA
  ☆25Updated 2 weeks ago
• Neo23x0 / god-mode-rules
  God Mode Detection Rules
  ☆134Updated last year
• MHaggis / notes
  Full of public notes and Utilities
  ☆127Updated 8 months ago
• jklepsercyber / defender-detectionhistory-parser
  A parser of Windows Defender's DetectionHistory forensic artifact, containing substantial info about quarantined files and executables.
  ☆113Updated 3 years ago
• BushidoUK / Open-source-Malware
  Repository of open source malware here on Github!
  ☆43Updated 3 years ago
• mandiant / citrix-ioc-scanner-cve-2023-3519
  ☆67Updated 2 years ago
• zaneGittins / Huntress
  PowerShell tool to triage systems
  ☆12Updated 2 years ago