Alternatives and similar repositories for wer-server

Users that are interested in wer-server are comparing it to the libraries listed below

• JohnLaTwC / MacroJob
  Proof of concept VBA code to add to Normal.dot to put restrictions on Word
  ☆40Updated 9 years ago
• dnlongen / RegLister
  Recurse through a registry, identifying values with large data -- a registry malware hunter
  ☆45Updated 9 years ago
• zacbrown / hiddentreasure-etw-demo
  Basic demo for Hidden Treasure talk.
  ☆49Updated 8 years ago
• matthastings / PSalander
  ☆52Updated 7 years ago
• ring0x0 / honeydrops
  An automated collection and analysis of malware from my honeypots.
  ☆25Updated 8 years ago
• zacbrown / PowerShellMethodAuditor
  PowerShellMethodAuditor listens to the PowerShell ETW provider and logs PowerShell method invocations.
  ☆38Updated 8 years ago
• JohnLaTwC / MSRC
  Scripts for interacting with MSRC portal data
  ☆77Updated 7 years ago
• K2 / Scripting
  PS / Bash / Python / Other scripts For FUN!
  ☆56Updated 2 months ago
• binarlyhq / binarly-query
  Command-line Interface for Binar.ly
  ☆39Updated 9 years ago
• techbliss / Yara_Mailware_Quick_menu_scanner
  Work Fast With the pattern matching swiss knife for malware researchers.
  ☆38Updated 9 years ago
• bsi-group / autorun-logger-server
  Server for receiving autorun data from the clients
  ☆13Updated 8 years ago
• zacbrown / PowerKrabsEtw
  PowerKrabsEtw is a PowerShell interface for doing real-time ETW tracing.
  ☆103Updated 5 years ago
• cylance / GetNETGUIDs
  Extract GUIDs from .NET assemblies
  ☆21Updated 9 years ago
• tehsyntx / loffice
  Lazy Office Analyzer
  ☆121Updated 8 years ago
• JamesHabben / sysmon-queries
  Queries to parse sysmon event log file with microsoft logparser
  ☆58Updated 10 years ago
• mattifestation / DeviceGuardBypassMitigationRules
  A reference Device Guard code integrity policy consisting of FilePublisher deny rules for published Device Guard configuration bypasses
  ☆114Updated 8 years ago
• scudette / memory-analysis
  A Rekall interactive document for a Memory Analysis workshop/course.
  ☆43Updated 8 years ago
• adamwallred / nvmtrace
  Proof-of-concept automated baremetal malware analysis framework.
  ☆14Updated 10 years ago
• TakahiroHaruyama / onigiri
  onigiri - remote malware triage script
  ☆24Updated 10 years ago
• devgc / EventMonkey
  A Windows Event Processing Utility
  ☆47Updated 7 years ago
• 1aN0rmus / vtTracker
  Monitor JSON notifications feed from VT
  ☆17Updated 8 years ago
• brad-sp / community-modified
  Modified edition of cuckoo community modules
  ☆32Updated 6 years ago
• TakahiroHaruyama / openioc_scan
  openioc_scan Volatility Framework plugin
  ☆44Updated 9 years ago
• davidhowell-tx / PS-DigitalForensics
  PowerShell scripts for Hard Drive forensics and parsing Windows Artifacts
  ☆56Updated 5 years ago
• williballenthin / process-forest
  Reconstruct process trees from event logs
  ☆147Updated 5 years ago
• aurel26 / s-4-u-for-windows
  s(4)u for Windows
  ☆48Updated 5 years ago
• r3comp1le / VT-Hunter
  Manage VT Alerts
  ☆62Updated 9 years ago
• thechrisharrod / Bloodhound
  Find permanent WMI event consumers on endpoints that could be used by APT actors.
  ☆17Updated 9 years ago
• darkquasar / WMI_Persistence
  A repo to hold some scripts pertaining WMI (Windows implementation of WBEM) forensics
  ☆88Updated 8 years ago
• binglot / misc
  Various scrips
  ☆12Updated 3 years ago