Exchange Transport rules to detect and enable response to phishing
☆415May 9, 2020Updated 5 years ago
Alternatives and similar repositories for SwiftFilter
Users that are interested in SwiftFilter are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Provision a brand-new company with proper defaults in Windows, Offic365, and Azure☆615Aug 17, 2024Updated last year
- Backup of my phishing regular expression testing bench☆152Mar 20, 2017Updated 9 years ago
- A batch script to demonstrate complex Microsoft Office deployments☆92May 10, 2018Updated 7 years ago
- Sysmon configuration file template with default high-quality event tracing☆5,493Jul 3, 2024Updated last year
- A repository for using windows event forwarding for incident detection and response☆1,320Sep 8, 2025Updated 7 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.☆940Dec 12, 2023Updated 2 years ago
- Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into …☆824Nov 5, 2023Updated 2 years ago
- Build a fast, free, and effective Threat Hunting/Incident Response Console with Windows Event Forwarding and PowerBI☆202Dec 11, 2017Updated 8 years ago
- The Phishing Intelligence Engine - An Active Defense PowerShell Framework for Phishing Defense with Office 365☆180Apr 13, 2020Updated 6 years ago
- ☆584Oct 9, 2020Updated 5 years ago
- Utilities for Sysmon☆1,637Apr 4, 2026Updated 3 weeks ago
- Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsac…☆884Nov 17, 2020Updated 5 years ago
- A PowerShell script for helping to find vulnerable settings in AD Group Policy. (deprecated, use Grouper2 instead!)☆736Feb 5, 2019Updated 7 years ago
- Python script to decode common encoded PowerShell scripts☆216Jun 13, 2018Updated 7 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- TrustedSec Sysinternals Sysmon Community Guide☆1,397Feb 10, 2026Updated 2 months ago
- PowerForensics provides an all in one platform for live disk forensic analysis☆1,431Nov 16, 2023Updated 2 years ago
- Configuration guidance for implementing the Windows 10 and Windows Server 2016 DoD Secure Host Baseline settings. #nsacyber☆1,590Dec 24, 2022Updated 3 years ago
- A repository of sysmon configuration modules☆3,029Aug 21, 2024Updated last year
- Configuration files for the SOF-ELK VM☆1,733Jan 21, 2026Updated 3 months ago
- A repository for using osquery for incident detection and response☆891Sep 8, 2025Updated 7 months ago
- A Powershell incident response framework☆1,649Nov 22, 2022Updated 3 years ago
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.☆35Jul 8, 2019Updated 6 years ago
- ☆262Jul 6, 2018Updated 7 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- A curated list of awesome Security Hardening techniques for Windows.☆1,794Jan 7, 2020Updated 6 years ago
- Monitor JSON notifications feed from VT☆17Jun 13, 2017Updated 8 years ago
- Please see other maintained fork:☆17Dec 4, 2025Updated 4 months ago
- CimSweep is a suite of CIM/WMI-based tools that enable the ability to perform incident response and hunting operations remotely across al…☆659Aug 19, 2019Updated 6 years ago
- Lists of sources and utilities utilized to hunt, detect and prevent evildoers.☆169Dec 10, 2018Updated 7 years ago
- The O365 Admin Center is a GUI application that administrators can use to administer every aspect of Office 365 including Exchange Online…☆302May 2, 2019Updated 6 years ago
- ☆13Aug 11, 2018Updated 7 years ago
- Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here at ht…☆24Jun 20, 2023Updated 2 years ago
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,541Jan 12, 2026Updated 3 months ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Investigate malicious Windows logon by visualizing and analyzing Windows event log☆3,167Apr 22, 2026Updated last week
- PowerShell script to find 'vulnerable' security-related GPOs that should be hardended☆198Jun 1, 2018Updated 7 years ago
- Automated deployment of Windows and Active Directory test lab networks. Useful for red and blue teams.☆492Feb 16, 2019Updated 7 years ago
- PowerShell Obfuscation Detection Framework☆753Dec 1, 2023Updated 2 years ago
- Sample queries for Advanced hunting in Microsoft 365 Defender☆2,057Feb 17, 2022Updated 4 years ago
- ☆13Feb 6, 2018Updated 8 years ago
- Automate the creation of a lab environment complete with security tooling and logging best practices☆4,950Jul 6, 2024Updated last year