Alternatives and similar repositories for office365-audit-log-collector

Users that are interested in office365-audit-log-collector are comparing it to the libraries listed below

• PwC-IR / Office-365-Extractor

  View on GitHub
  The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL)
  ☆266Feb 3, 2022Updated 4 years ago
• leftorbit23 / graylog-ad-audit

  View on GitHub
  ☆16Mar 17, 2017Updated 8 years ago
• reighnman / Graylog_Content_Pack_Active_Directory_Auditing

  View on GitHub
  ☆36Dec 13, 2023Updated 2 years ago
• chrisdfir / sysmon2splunk

  View on GitHub
  The method and files used to generate Sysmon event logs, push them to a remote Splunk, and ingest/normalize the data for analysis.
  ☆10Sep 28, 2020Updated 5 years ago
• airbus-cyber / graylog-plugin-correlation-count

  View on GitHub
  Alert condition plugin for Graylog to perform correlation
  ☆28Jan 14, 2026Updated last month
• SeamusJ / deploy-build-to-s3

  View on GitHub
  Deploy build artifact for a static website to an aws s3 bucket
  ☆12Apr 21, 2018Updated 7 years ago
• SecSamDev / sysmon-arangodb

  View on GitHub
  Threat hunting with Sysmon and ArangoDB Graphs
  ☆12Apr 16, 2020Updated 5 years ago
• k3idii / ION

  View on GitHub
  Indicators of Normality
  ☆11Jul 22, 2022Updated 3 years ago
• reighnman / Graylog_Content_Pack_Active_Directory_Auditing_Dashboards_Beats

  View on GitHub
  ☆16Dec 13, 2023Updated 2 years ago
• brokensound77 / toruk

  View on GitHub
  Crowdstrike Falcon Host script for iterating through instances to get alert and other relevant data
  ☆13Jul 16, 2019Updated 6 years ago
• cylance / CyLR

  View on GitHub
  CyLR - Live Response Collection Tool
  ☆10Jul 14, 2020Updated 5 years ago
• libyal / reviveit

  View on GitHub
  ReviveIT (revit) is a proof of concept file recovery tool (carver)
  ☆12Dec 3, 2020Updated 5 years ago
• tholian-network / vulnerabilities

  View on GitHub
  A vulnerabilities database for fully-automated audits
  ☆16Jul 20, 2023Updated 2 years ago
• kolide / docker-osquery

  View on GitHub
  Dockerfiles for containerized osquery
  ☆14May 23, 2017Updated 8 years ago
• sumeshi / ntfsdump

  View on GitHub
  An efficient tool for extracting files, directories, and alternate data streams directly from NTFS image files.
  ☆22Feb 21, 2024Updated last year
• atthacks / Privescker

  View on GitHub
  Privescker - make life easier by dumping all your common Windows enum, privesc and post exploitation scripts and tools on to the box in o…
  ☆45Apr 4, 2022Updated 3 years ago
• dcdiagfix / AD-ServiceAccounts-FUNdamentals

  View on GitHub
  AD Service Accounts FUNdamentals
  ☆23Jun 17, 2025Updated 8 months ago
• hugobatista / zerotrust-ca-powertoys

  View on GitHub
  CA-PowerToys is a set of tools to help you manage Conditional Access policies. It is a command line tool that can be used to export, impo…
  ☆20Feb 5, 2026Updated last week
• vreguibar / EguibarIT

  View on GitHub
  Root module for creating Tier Model / Delegation Model on Active Directory
  ☆20Aug 28, 2025Updated 5 months ago
• fresh2dev / pskafka

  View on GitHub
  Kafka CLI with Powershell flavor
  ☆17Mar 5, 2019Updated 6 years ago
• cbcommunity / cbapi-examples

  View on GitHub
  Repository for all cbapi example scripts
  ☆16Sep 18, 2018Updated 7 years ago
• nettitude / logparser

  View on GitHub
  SQL scripts for querying event logs
  ☆21Jul 12, 2017Updated 8 years ago
• chiff-app / chiff-cli

  View on GitHub
  Chiff command-line client.
  ☆18Oct 31, 2025Updated 3 months ago
• ansorren / GDPatrol

  View on GitHub
  A Lambda-powered Security Orchestration framework for AWS GuardDuty
  ☆53Dec 15, 2019Updated 6 years ago
• reighnman / Graylog_Content_Pack_WinDNS

  View on GitHub
  A Windows DNS content pack for graylog.
  ☆20Dec 13, 2023Updated 2 years ago
• tasox / Epimitheus

  View on GitHub
  Epimitheus is a tool that uses graphical database Neo4j for Windows Events visualization.
  ☆19Mar 13, 2022Updated 3 years ago
• cylance / python-cyapi

  View on GitHub
  This Library provides python bindings to interact with the Cylance API.
  ☆20Mar 20, 2023Updated 2 years ago
• ExabeamLabs / Synopsis

  View on GitHub
  Synopsis is a tool to aid analysts reviewing browser history files by providing a high-level “synopsis” of key information.
  ☆22Oct 31, 2018Updated 7 years ago
• juiceman84 / Fortigate_Content_Pack

  View on GitHub
  Initial Revision
  ☆16Jun 11, 2018Updated 7 years ago
• fox-it / dissect.esedb

  View on GitHub
  A Dissect module implementing a parser for Microsofts Extensible Storage Engine Database (ESEDB), used for example in Active Directory, E…
  ☆24Nov 20, 2025Updated 2 months ago
• stricaud / sightingdb

  View on GitHub
  SightingDB is a database for Sightings
  ☆22Jun 21, 2023Updated 2 years ago
• Cainor / Calendarinho

  View on GitHub
  Manage Your Large Team of Consultants
  ☆11Sep 18, 2025Updated 5 months ago
• refractionPOINT / python-limacharlie

  View on GitHub
  Python API for the LimaCharlie.io service.
  ☆21Updated this week
• forensicmatt / RsWindowsThingies

  View on GitHub
  Windows Thingies... but in Rust
  ☆23Nov 12, 2022Updated 3 years ago
• sumeshi / ntfsfind

  View on GitHub
  An efficient tool for search files, directories, and alternate data streams directly from NTFS image files.
  ☆28Feb 21, 2024Updated last year
• airbus-cyber / graylog-plugin-logging-alert

  View on GitHub
  Alert notification plugin for Graylog to generate log messages from alerts
  ☆27Jan 14, 2026Updated last month
• libyal / winevt-kb

  View on GitHub
  Windows Event Log Knowledge Base
  ☆29Dec 23, 2025Updated last month
• sengi12 / GhidraScripting-Basics

  View on GitHub
  Some basics on how to get started with Ghdira Scripting
  ☆26Nov 11, 2025Updated 3 months ago
• rxwx / CVE-2017-11882

  View on GitHub
  Proof-of-Concept exploits for CVE-2017-11882
  ☆41Jan 2, 2018Updated 8 years ago