Alternatives and similar repositories for winevt_logs_analysis:

Users that are interested in winevt_logs_analysis are comparing it to the libraries listed below

• SevenStones / auditpolCIS
  CIS Benchmark testing of Windows SIEM configuration
  ☆44Updated last year
• RedTeamOperations / Detecting-Adversarial-Tradecrafts-Tools-by-leveraging-ETW
  CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"
  ☆46Updated 2 years ago
• hyd3sec / MultiThreaded_C2_With_Keylogger
  Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil
  ☆20Updated 2 years ago
• mr-r3b00t / NotProxyShellHunter
  Check for NotProxyShell CVE-2022-40140 & CVE-2022-41082
  ☆25Updated 2 years ago
• ZeroPointSecurity / Domain-Enumeration-Tool
  Perform Windows domain enumeration via LDAP
  ☆36Updated 2 years ago
• hausec / CobaltStrikeToGhostWriter
  Log converter from CS log to Ghostwriter CSV
  ☆29Updated 4 years ago
• matthw / malware_analysis
  ☆18Updated 10 months ago
• Flangvik / collector
  Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.
  ☆19Updated 2 years ago
• EspressoCake / MITRE_ATTACK_CLI
  CLI Search for Security Operators of MITRE ATT&CK URLs
  ☆16Updated 2 years ago
• joeminicucci / RedIra
  A cloud automation system for Red Teams based on Terraform and Ansible
  ☆24Updated 3 years ago
• AlrikRr / ActiveDirectory_Lab
  Active DIrectory Lab for Pentesting Practice
  ☆24Updated 2 years ago
• magisterquis / shelloverreversessh
  A little implant which SSH's back with a shell
  ☆36Updated 3 years ago
• cedowens / Mod_Rewrite_Automation
  Scripts to automate standing up apache2 with mod_rewrite in front of C2 servers.
  ☆46Updated 4 years ago
• hyp3rlinx / NtFileSins
  Windows File Enumeration Intel Gathering Tool.
  ☆17Updated last year
• dinosn / proxyshell
  A basic proxylogon scanner
  ☆27Updated 3 years ago
• CompassSecurity / PowerLsassSilentProcessExit
  ☆24Updated 3 years ago
• hausec / Set-RBCDBytes
  ☆16Updated 4 years ago
• jfmaes / Ansible-Cobalt-Strike
  An Ansible role to install cobalt-strike
  ☆16Updated 4 years ago
• AssuranceMaladieSec / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆26Updated 2 years ago
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆30Updated 2 years ago
• LuemmelSec / CVE-2023-29357
  ☆52Updated last year
• Muhammad-Ali007 / OutlookNTLM_CVE-2023-23397
  ☆21Updated last year
• grahamhelton / dehashQuery
  A script used to query the dehashed API and filter for more useful results
  ☆15Updated 3 years ago
• OtterHacker / LabS4U2Self
  ☆30Updated 2 years ago
• OOAFA / squeegee
  A collection of tools using OCR to extract potential usernames from RDP screenshots.
  ☆30Updated 10 months ago
• nettitude / SyscallsExtractor
  ☆23Updated 2 years ago
• outflanknl / RedFile
  Serving files with conditions, serverside keying and more.
  ☆18Updated 2 years ago
• cheshireca7 / smbAutoRelay
  SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…
  ☆47Updated 4 years ago
• RedTeamOperations / GoogleWorkspaceDirectoryDump
  ☆16Updated 2 years ago
• codewhitesec / apollon
  Proof-of-Concept to evade auditd by writing /proc/PID/mem
  ☆20Updated last year