Alternatives and similar repositories for winevt_logs_analysis

Users that are interested in winevt_logs_analysis are comparing it to the libraries listed below

• SevenStones / auditpolCIS
  CIS Benchmark testing of Windows SIEM configuration
  ☆44Updated 2 years ago
• mr-r3b00t / NotProxyShellHunter
  Check for NotProxyShell CVE-2022-40140 & CVE-2022-41082
  ☆26Updated 2 years ago
• hausec / CobaltStrikeToGhostWriter
  Log converter from CS log to Ghostwriter CSV
  ☆30Updated 4 years ago
• ZeroPointSecurity / Domain-Enumeration-Tool
  Perform Windows domain enumeration via LDAP
  ☆36Updated 2 years ago
• Muhammad-Ali007 / OutlookNTLM_CVE-2023-23397
  ☆22Updated last year
• RedTeamOperations / Detecting-Adversarial-Tradecrafts-Tools-by-leveraging-ETW
  CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"
  ☆49Updated 3 years ago
• hyd3sec / MultiThreaded_C2_With_Keylogger
  Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil
  ☆21Updated 2 years ago
• advanced-threat-research / NetLlix
  A project created with an aim to emulate and test exfiltration of data over different network protocols.
  ☆31Updated 2 years ago
• joeminicucci / RedIra
  A cloud automation system for Red Teams based on Terraform and Ansible
  ☆23Updated 4 years ago
• Flangvik / collector
  Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.
  ☆19Updated 2 years ago
• outflanknl / RedFile
  Serving files with conditions, serverside keying and more.
  ☆18Updated 3 years ago
• cheshireca7 / smbAutoRelay
  SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…
  ☆47Updated 4 years ago
• EspressoCake / MITRE_ATTACK_CLI
  CLI Search for Security Operators of MITRE ATT&CK URLs
  ☆16Updated 2 years ago
• dinosn / proxyshell
  A basic proxylogon scanner
  ☆27Updated 3 years ago
• matthw / malware_analysis
  ☆18Updated last year
• wsummerhill / IPv4Fuscation-Encrypted
  ☆19Updated last year
• ZarvisD / Azure-AD
  Azure pentesting reference for Altered Security Lab
  ☆24Updated 3 years ago
• marcosimioni / omigood
  OMIGOD! OM I GOOD? A free scanner to detect VMs vulnerable to one of the "OMIGOD" vulnerabilities discovered by Wiz's threat research tea…
  ☆18Updated 3 years ago
• 3xpl01tc0d3r / Building-ActiveDirectory-Lab
  Building ActiveDirectory Lab for practicing various attack vectors used during Red Team engagement.
  ☆36Updated 5 years ago
• AlteredSecurity / RBCD
  Script written in python to perform Resource-Based Constrained Delegation (RBCD) attack by leveraging Impacket toolkit.
  ☆21Updated 3 years ago
• codewhitesec / apollon
  Proof-of-Concept to evade auditd by writing /proc/PID/mem
  ☆21Updated last year
• AssuranceMaladieSec / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆26Updated 2 years ago
• Cyb3r-Techie / PEzor-Docker
  With the help of this docker image, you can easily access PEzor on your system!
  ☆15Updated 3 years ago
• Mr-Cyb3rgh0st / Excel-Exploit
  MacroExploit use in excel sheet
  ☆20Updated last year
• binaryAccess / highway_to_hell
  Pwnage
  ☆16Updated 3 months ago
• grahamhelton / dehashQuery
  A script used to query the dehashed API and filter for more useful results
  ☆15Updated 3 years ago
• snovvcrash / PCredz
  This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, …
  ☆18Updated 2 years ago
• MrTuxx / aad-sso-enum-brute-spray
  Proof of Concept in Go from Secureworks' research on Azure Active Directory Brute-Force Attacks. Inspired by @treebuilder's POC on PowerS…
  ☆14Updated 3 years ago
• LOFL-Project / LOFLCAB
  ☆54Updated 5 months ago
• BC-SECURITY / Invoke-SocksProxy
  Socks proxy server using powershell. Supports local and reverse connections for pivoting.
  ☆11Updated 4 years ago