Sysmon configuration file templates with advanced event tracing and blocking
☆59Jun 22, 2026Updated 2 weeks ago
Alternatives and similar repositories for sysmon-config
Users that are interested in sysmon-config are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A Compiler from Sigma rules to VQL☆19May 18, 2026Updated last month
- Sysmon configuration file template with default high-quality event tracing☆598Jan 21, 2026Updated 5 months ago
- a Pixie Plus integration for Home Assistant☆11Jun 19, 2026Updated 2 weeks ago
- Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …☆13Sep 27, 2022Updated 3 years ago
- YubiKey Smart Card Minidriver Administrative Template (ADMX)☆19Jun 23, 2024Updated 2 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…☆154Jun 23, 2026Updated last week
- This tool aims at parsing Microsoft Protection logs to provide relevant data to forensic analysts during incident responses.☆22Sep 30, 2022Updated 3 years ago
- Scapy hands-on at #GreHack17☆17Nov 14, 2017Updated 8 years ago
- An open-source log viewer inspired by Microsoft's CMTrace.exe.☆211Updated this week
- ☆14Mar 28, 2018Updated 8 years ago
- Claude Code hook that detects context compaction and injects a reminder to re-read AGENTS.md, preventing post-compaction rule amnesia in …☆47Apr 29, 2026Updated 2 months ago
- A community terraform provider for Microsoft 365 for configuration as code workflows. It can interface with both MS Graph v1.0 & MS Graph…☆53Jun 29, 2026Updated last week
- ☆78Jun 25, 2019Updated 7 years ago
- Takes in scan reports from the GVM PostgreSQL Database and dump into Elasticsearch☆14Aug 18, 2023Updated 2 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Google Filestream Forensic Tool☆22Mar 10, 2022Updated 4 years ago
- Anything Sysmon related from the MSTIC R&D team☆155Jun 8, 2024Updated 2 years ago
- ☆33Mar 24, 2026Updated 3 months ago
- Script to download session files from Midwest Management Summit☆63May 6, 2026Updated last month
- A Mac utility to help download your Jamf assets.☆12Dec 8, 2021Updated 4 years ago
- A C project that generates usernames based on input lists and format you decide yourself☆12Jun 29, 2026Updated last week
- Collection of scripts provided for public use☆43Updated this week
- CIFv3 Ubuntu 16.04 Docker Container (Bearded Avenger)☆12Apr 18, 2018Updated 8 years ago
- Azure Activity Log Axe is a continually developing tool that simplifies the transactional log format provided by Microsoft. The tool leve…☆35Sep 6, 2024Updated last year
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- ☆12Oct 20, 2022Updated 3 years ago
- Terraform module to send CloudWatch logs to a syslog server. Compatible with papertrail, logstash, and datadog.☆12Mar 18, 2021Updated 5 years ago
- USN Journal full path builder☆69Apr 16, 2026Updated 2 months ago
- Detects CanaryTokens in Office docs and PDFs (docx, xlsx, pptx, pdf) without triggering alerts☆147Dec 23, 2025Updated 6 months ago
- Takajō (鷹匠) is a Hayabusa results analyzer.☆160Jun 29, 2026Updated last week
- Microsoft Office365 Protection Center Audit Log Parser☆27Jul 17, 2023Updated 2 years ago
- Office365 Outlook and Exchange 2016 REST PowerShell library☆51Mar 30, 2022Updated 4 years ago
- https://lolad-project.github.io/☆92Jan 2, 2025Updated last year
- KQL Queries☆42Jun 23, 2026Updated last week
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Display simple toast notification for user in System context when running a Proactive Remediation script☆14Nov 2, 2020Updated 5 years ago
- ☆12Jan 11, 2020Updated 6 years ago
- The only PowerShell script you need to manage registry on Windows devices using Microsoft Intune Remediations☆32Mar 1, 2026Updated 4 months ago
- Zero-dependency Linux memory forensics, leveraging kernel-embedded BTF and kallsyms for type-aware memory analysis without external debug…☆163Jun 27, 2026Updated last week
- ☆11Aug 9, 2024Updated last year
- Protect your Domain Controllers by auditing and restricting LDAP requests☆191May 29, 2025Updated last year
- Automatically generated Sysmon parser for Azure Sentinel☆18Jan 6, 2026Updated 6 months ago