Alternatives and similar repositories for winevt_logs_analysis

Users that are interested in winevt_logs_analysis are comparing it to the libraries listed below

• SevenStones / auditpolCIS
  CIS Benchmark testing of Windows SIEM configuration
  ☆45Updated 2 years ago
• RedTeamOperations / Detecting-Adversarial-Tradecrafts-Tools-by-leveraging-ETW
  CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"
  ☆50Updated 3 years ago
• ST1LLY / dc-sonar
  Analyzing AD domains for security risks related to user accounts
  ☆64Updated 2 years ago
• LOFL-Project / LOFLCAB
  ☆55Updated 10 months ago
• advanced-threat-research / NetLlix
  A project created with an aim to emulate and test exfiltration of data over different network protocols.
  ☆31Updated 2 years ago
• ZephrFish / SandboxSpy
  Code for profiling sandboxes - Initially an idea to profile sandboxes, the code is written to take enviromental variables and send them b…
  ☆21Updated last month
• mr-r3b00t / NotProxyShellHunter
  Check for NotProxyShell CVE-2022-40140 & CVE-2022-41082
  ☆26Updated 3 years ago
• matthw / malware_analysis
  ☆18Updated last year
• AssuranceMaladieSec / AD-description-password-finder
  Retrieve AD accounts description and search for password in it
  ☆82Updated 3 years ago
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆31Updated 3 years ago
• ZeroPointSecurity / Domain-Enumeration-Tool
  Perform Windows domain enumeration via LDAP
  ☆37Updated 3 years ago
• ab2pentest / MacOSThreatTrack
  Bash tool used for proactive detection of malicious activity on macOS systems.
  ☆36Updated 3 weeks ago
• hyd3sec / MultiThreaded_C2_With_Keylogger
  Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil
  ☆21Updated 3 years ago
• dmcxblue / Red-Team-Notes
  Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …
  ☆43Updated 3 years ago
• AhmedKamal1432 / Evilize
  Triaging Windows event logs based on SANS Poster
  ☆41Updated last month
• knight0x07 / PoC-Malware-TTPs
  PoC-Malware-TTPs
  ☆49Updated 2 years ago
• icyguider / NewPowerDNS
  Updated version of PowerDNS by @domchell. Adds support for transfers over DNS A records and a few other useful features.
  ☆84Updated 2 years ago
• Muhammad-Ali007 / OutlookNTLM_CVE-2023-23397
  ☆22Updated 2 years ago
• tothi / azure-function-proxy
  basic proxy as an azure function serverless app
  ☆18Updated 2 years ago
• AlrikRr / ActiveDirectory_Lab
  Active DIrectory Lab for Pentesting Practice
  ☆24Updated 3 years ago
• expl0itabl3 / Redsheet
  Red Teaming & Active Directory Cheat Sheet.
  ☆41Updated 2 years ago
• joeminicucci / RedIra
  A cloud automation system for Red Teams based on Terraform and Ansible
  ☆24Updated 4 years ago
• mobdk / winNoise
  Execute embedded Mimikatz
  ☆13Updated 3 years ago
• Cyb3r-Techie / PEzor-Docker
  With the help of this docker image, you can easily access PEzor on your system!
  ☆15Updated 3 years ago
• binaryAccess / highway_to_hell
  Pwnage
  ☆17Updated 3 months ago
• LuemmelSec / SAML2Spray
  Python Script for SAML2 Authentication Passwordspray
  ☆42Updated 2 years ago
• JPCERTCC / CobaltStrike-Config
  Repository for archiving Cobalt Strike configuration
  ☆35Updated this week
• RiccardoAncarani / talks
  ☆43Updated 3 years ago
• HackingLZ / TomcatBackdoorPoC
  Tomcat backdoor based on CS blog
  ☆27Updated 2 years ago
• EspressoCake / MITRE_ATTACK_CLI
  CLI Search for Security Operators of MITRE ATT&CK URLs
  ☆16Updated 2 years ago