Please see other maintained fork:
☆17Dec 4, 2025Updated 4 months ago
Alternatives and similar repositories for sysmon-config
Users that are interested in sysmon-config are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Suricata rules to detect Winnti communication☆16Mar 5, 2018Updated 8 years ago
- Appendix resources for Intrinsec's "Amélioration des capacités de détection" handbook.☆13Mar 26, 2018Updated 8 years ago
- Network detector for Winnti malware☆21Mar 6, 2018Updated 8 years ago
- ☆17Sep 14, 2017Updated 8 years ago
- This repository is a curated list of pro bono incident response entities.☆21Jun 21, 2023Updated 2 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- List of netblocks with shared hosting on 20170330☆10Apr 10, 2017Updated 9 years ago
- Various snippets created during malware analysis☆22Apr 29, 2018Updated 7 years ago
- ☆53Mar 4, 2019Updated 7 years ago
- Pull author and committer names and emails from Travis-CI☆11Aug 9, 2020Updated 5 years ago
- Tools for parsing Forensic images☆41Dec 14, 2018Updated 7 years ago
- Understanding ATT&CK Matrix for Enterprise☆79May 16, 2018Updated 7 years ago
- Defender for Endpoint☆28Mar 28, 2026Updated last week
- Small and highly portable detection tests.☆12Oct 12, 2017Updated 8 years ago
- A python implementation of send_arp.c from the linux-ha project☆16Apr 25, 2016Updated 9 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Log Examination Tool☆27Oct 11, 2016Updated 9 years ago
- Basic Auth Phish page☆25Sep 11, 2017Updated 8 years ago
- Generates visualizations from the output of flow tools such as SiLK.☆34Dec 8, 2016Updated 9 years ago
- A collection of bro_scripts and signatures☆27Jun 26, 2019Updated 6 years ago
- ☆17Apr 20, 2022Updated 3 years ago
- This PowerShell module allows you to create Microsoft Word documents without Word being installed on the machine☆13Oct 7, 2022Updated 3 years ago
- This repository contains examples of micro virtual machines (microVMs) that can be run using firecracker.☆23Jan 22, 2019Updated 7 years ago
- Bootrom RPC payload☆21Feb 3, 2019Updated 7 years ago
- Reconstruct process trees from event logs☆148Aug 12, 2020Updated 5 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Automated Memory Forensic☆34Jul 18, 2018Updated 7 years ago
- This project provides Base64 encoding and decoding functionality to PowerShell within Constrained Language Mode☆27Jun 25, 2024Updated last year
- Splunk App to assist Sysmon Threat Hunting☆38Mar 7, 2017Updated 9 years ago
- Rules I have researched for Microsoft Sentinel in my spare time. If someone wants to offer me a job I am open. Anyone can use this. Pleas…☆17Mar 29, 2026Updated last week
- PowerShell Utilities for Security Situational Awareness☆13Jan 10, 2017Updated 9 years ago
- Monokai Theme for Powershell ISE 3.0☆22Nov 13, 2012Updated 13 years ago
- 📖 TypeScript client for Kindle's unofficial API.☆14Oct 7, 2024Updated last year
- A set of Maltego transforms for VirusTotal Public API v2.0. This set has the added functionality of caching queries on a daily basis to s…☆82Nov 29, 2015Updated 10 years ago
- Three little Python scripts for data preparation: remove commas, add commas, concatenate files☆16Jul 26, 2017Updated 8 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Script for pulling events from a MISP database and converting them to Autofocus queries.☆13Dec 28, 2015Updated 10 years ago
- REST API based malware repository (abandoned)☆107Apr 4, 2015Updated 11 years ago
- AzureLogLibrary - repository used for Azure logging with ARM-templates, scripts, documentation to deploy DCRs, extensions, etc☆14Aug 11, 2023Updated 2 years ago
- Monitors for DCSYNC and DCSHADOW attacks and create custom Windows Events for these events.☆141Mar 7, 2018Updated 8 years ago
- Cmdlets for capturing Windows Events☆14Mar 11, 2022Updated 4 years ago
- PowerShell script to retreive wifi ESSIDs and Passwords.☆26Jul 28, 2017Updated 8 years ago
- Docker Image for H2O - the optimized HTTP/1, HTTP/2 server☆16Jan 29, 2016Updated 10 years ago