This script enhances endpoint logging telemetry for the purpose of advanced malware threat detection or for building detections or malware analysis. This can be used in production, however you might want to tune the GPO edits as needed.
☆43May 6, 2026Updated 2 months ago
Alternatives and similar repositories for Enable-All-The-Logs
Users that are interested in Enable-All-The-Logs are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- NTFS Security Descriptor Stream ($Secure:$SDS) parser☆14Jan 9, 2023Updated 3 years ago
- A collection of small scripts and tools for deobfuscation and malware analysis.☆67Mar 27, 2023Updated 3 years ago
- Triaging Windows event logs based on SANS Poster☆48Nov 22, 2025Updated 7 months ago
- Application for detecting command and control (C2) communication through network traffic analysis.☆17May 12, 2023Updated 3 years ago
- ☆23May 23, 2024Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆26Jul 23, 2024Updated last year
- Threat feeds designed to extract adversarial TTPs and IOCs, using: ✨AI✨☆72Jun 17, 2026Updated 3 weeks ago
- CIFv3 Ubuntu 16.04 Docker Container (Bearded Avenger)☆12Apr 18, 2018Updated 8 years ago
- Terraform module to send CloudWatch logs to a syslog server. Compatible with papertrail, logstash, and datadog.☆12Mar 18, 2021Updated 5 years ago
- ☆10Aug 11, 2025Updated 10 months ago
- A web API for various cyber threat intelligence frameworks, including MITRE ATT&CK, CWE, ATLAS...☆21Jun 19, 2026Updated 2 weeks ago
- A ProcessMonitor visualization application written in rust.☆182Aug 6, 2023Updated 2 years ago
- Abusing Remote Windows SMB Shares for Fun and Pen Testing☆15May 23, 2023Updated 3 years ago
- ☆13Mar 28, 2026Updated 3 months ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- A framework for TinTin++ using tmux☆12Jul 10, 2016Updated 9 years ago
- ☆10Sep 10, 2022Updated 3 years ago
- Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …☆13Sep 27, 2022Updated 3 years ago
- Wi-Fi Hacking Workshop☆14Dec 27, 2020Updated 5 years ago
- http://moaistory.blogspot.com/2018/10/winsearchdbanalyzer.html☆132Jul 20, 2024Updated last year
- Automatically generated Sysmon parser for Azure Sentinel☆18Jan 6, 2026Updated 6 months ago
- This package allows for creating alerts in The Hive from emails retrieved from a Microsoft Exchange mailbox.☆12Jul 13, 2017Updated 8 years ago
- This Repository gives the best and possible strategies against hunting the ransomware☆26Aug 23, 2022Updated 3 years ago
- PS-TrustedDocuments: PowerShell script to handle information on trusted documents for Microsoft Office☆37Mar 15, 2023Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Living off the False Positive!☆42Apr 3, 2026Updated 3 months ago
- Go reverse shell for Win/Linux/OSX☆17May 15, 2019Updated 7 years ago
- SharpShareFinder is a minimalistic network share discovery POC designed to enumerate shares in Windows Active Directory networks leveragi…☆36Jul 10, 2024Updated last year
- PowerShell Script for Agentless Incident Response☆25Apr 5, 2018Updated 8 years ago
- Collaborative malware exchange repository.☆34Nov 21, 2024Updated last year
- Impacket is a collection of Python classes for working with network protocols.☆13Oct 29, 2022Updated 3 years ago
- Rules I have researched for Microsoft Sentinel in my spare time. If someone wants to offer me a job I am open. Anyone can use this. Pleas…☆17Mar 29, 2026Updated 3 months ago
- React Native port of AI Image Generator, Powered by OpenAI & Azure☆10Aug 26, 2023Updated 2 years ago
- ☆11Jun 2, 2016Updated 10 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- petit "playbook" qui pourrait servir de base à une réponse à incident lors d'une attaque de type ransomware☆21Aug 30, 2022Updated 3 years ago
- This repository provides a comprehensive Digital Footprint Checklist to help individuals manage their online presence and enhance privacy…☆17Dec 25, 2024Updated last year
- Learn about a network from a pcap file or reading from an interface☆29Apr 6, 2024Updated 2 years ago
- Sigma rules converted for direct use with Zircolite☆15Updated this week
- WISKESS automates the Windows evidence processing for Incident Response investigations. Rust version.☆17Jun 27, 2026Updated last week
- This tool parses Windows EVTX logs to extract login and logout sessions from a security.evtx file. It uses a Tkinter GUI to let you selec…☆31Feb 22, 2025Updated last year
- Basic auto click that can be used for almost any idle clicker game!☆11Feb 20, 2023Updated 3 years ago