Yamato-Security / WELALinks
Windows Event Log Auditor
☆36Updated last week
Alternatives and similar repositories for WELA
Users that are interested in WELA are comparing it to the libraries listed below
Sorting:
- A small util to brute-force prefetch hashes☆78Updated 3 years ago
- Evtx Log (xml) Browser☆56Updated 2 years ago
- Triaging Windows event logs based on SANS Poster☆39Updated 2 years ago
- Living off the False Positive!☆39Updated 6 months ago
- Placeholder for my detection repo and misc detection engineering content☆42Updated last year
- Searching .evtx logs for remote connections☆24Updated 2 years ago
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 3 years ago
- A project created with an aim to emulate and test exfiltration of data over different network protocols.☆31Updated 2 years ago
- Bloodhound Portable for Windows☆53Updated 2 years ago
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆60Updated 2 years ago
- ☆80Updated 2 years ago
- CIS Benchmark testing of Windows SIEM configuration☆44Updated 2 years ago
- SMBMap is a handy SMB enumeration tool - here with Kerberos support☆73Updated 3 years ago
- Carbon Black Response IR tool☆54Updated 4 years ago
- Look into EDR events from network☆23Updated 3 months ago
- CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"☆50Updated 3 years ago
- ☆43Updated last month
- Rhaegal is a tool written in Python 3 used to scan Windows Event Logs for suspicious logs. Rhaegal uses custom rule format to detect sus…☆41Updated last year
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆70Updated 3 years ago
- Hundred Days of Yara Challenge☆12Updated 3 years ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆74Updated 3 years ago
- Initial triage of Windows Event logs☆102Updated last year
- Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation☆105Updated 3 years ago
- ESXi Cyber Security Incident Response Script☆25Updated 11 months ago
- PowerShell Script Analyzer☆70Updated last year
- Kerberoast Detection Script☆30Updated 9 months ago
- Linux Evidence Acquisition Framework☆119Updated 11 months ago
- General Content☆26Updated last year
- ☆34Updated 2 years ago
- Some portable tools, some YARA, some Python, and a little bit of love. Not all of these tools can be used in incident response. Use PEs…☆38Updated 4 months ago