Exchange Transport rules to detect and enable response to phishing
☆415May 9, 2020Updated 6 years ago
Alternatives and similar repositories for SwiftFilter
Users that are interested in SwiftFilter are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Provision a brand-new company with proper defaults in Windows, Offic365, and Azure☆615Aug 17, 2024Updated last year
- Backup of my phishing regular expression testing bench☆152Mar 20, 2017Updated 9 years ago
- A batch script to demonstrate complex Microsoft Office deployments☆92May 10, 2018Updated 8 years ago
- Sysmon configuration file template with default high-quality event tracing☆5,544Jul 3, 2024Updated last year
- A repository for using windows event forwarding for incident detection and response☆1,330Sep 8, 2025Updated 9 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.☆940Dec 12, 2023Updated 2 years ago
- Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into …☆826Nov 5, 2023Updated 2 years ago
- Build a fast, free, and effective Threat Hunting/Incident Response Console with Windows Event Forwarding and PowerBI☆202Dec 11, 2017Updated 8 years ago
- The Phishing Intelligence Engine - An Active Defense PowerShell Framework for Phishing Defense with Office 365☆180Apr 13, 2020Updated 6 years ago
- ☆585Oct 9, 2020Updated 5 years ago
- Utilities for Sysmon☆1,647Apr 4, 2026Updated 2 months ago
- Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsac…☆886Nov 17, 2020Updated 5 years ago
- A PowerShell script for helping to find vulnerable settings in AD Group Policy. (deprecated, use Grouper2 instead!)☆736Feb 5, 2019Updated 7 years ago
- Python script to decode common encoded PowerShell scripts☆216Jun 13, 2018Updated 7 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- TrustedSec Sysinternals Sysmon Community Guide☆1,418Feb 10, 2026Updated 4 months ago
- PowerForensics provides an all in one platform for live disk forensic analysis☆1,435Nov 16, 2023Updated 2 years ago
- A repository of sysmon configuration modules☆3,055Aug 21, 2024Updated last year
- Configuration files for the SOF-ELK VM☆1,737Updated this week
- A repository for using osquery for incident detection and response☆895Sep 8, 2025Updated 9 months ago
- A Powershell incident response framework☆1,655Nov 22, 2022Updated 3 years ago
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.☆35Jul 8, 2019Updated 6 years ago
- ☆261Jul 6, 2018Updated 7 years ago
- A curated list of awesome Security Hardening techniques for Windows.☆1,790Jan 7, 2020Updated 6 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Monitor JSON notifications feed from VT☆17Jun 13, 2017Updated 8 years ago
- Please see other maintained fork:☆17Dec 4, 2025Updated 6 months ago
- CimSweep is a suite of CIM/WMI-based tools that enable the ability to perform incident response and hunting operations remotely across al…☆658Aug 19, 2019Updated 6 years ago
- Lists of sources and utilities utilized to hunt, detect and prevent evildoers.☆170Dec 10, 2018Updated 7 years ago
- The O365 Admin Center is a GUI application that administrators can use to administer every aspect of Office 365 including Exchange Online…☆300May 2, 2019Updated 7 years ago
- ☆13Aug 11, 2018Updated 7 years ago
- Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here at ht…☆24May 13, 2026Updated 3 weeks ago
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,579Jan 12, 2026Updated 4 months ago
- Investigate malicious Windows logon by visualizing and analyzing Windows event log☆3,178Apr 22, 2026Updated last month
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- PowerShell script to find 'vulnerable' security-related GPOs that should be hardended☆198Jun 1, 2018Updated 8 years ago
- Automated deployment of Windows and Active Directory test lab networks. Useful for red and blue teams.☆494Feb 16, 2019Updated 7 years ago
- PowerShell Obfuscation Detection Framework☆753Dec 1, 2023Updated 2 years ago
- Sample queries for Advanced hunting in Microsoft 365 Defender☆2,075Feb 17, 2022Updated 4 years ago
- ☆13Feb 6, 2018Updated 8 years ago
- Automate the creation of a lab environment complete with security tooling and logging best practices☆4,975Jul 6, 2024Updated last year
- Main Sigma Rule Repository☆10,551Updated this week