Alternatives and similar repositories for Windows-Event-Forwarder

Users that are interested in Windows-Event-Forwarder are comparing it to the libraries listed below

• mattifestation / WDACTools
  A PowerShell module to facilitate building, configuring, deploying, and auditing Windows Defender Application Control (WDAC) policies
  ☆237Updated 3 years ago
• Sleepw4lker / TameMyCerts
  Policy Module for Microsoft Active Directory Certificate Services
  ☆260Updated 3 weeks ago
• airbus-cert / ntTraceControl
  Powershell Event Tracing Toolbox
  ☆77Updated 3 years ago
• zeronetworks / rpcfirewall
  ☆534Updated 8 months ago
• MicrosoftDocs / WDAC-Toolkit
  Documentation and tools to access Windows Defender Application Control (WDAC) technology.
  ☆255Updated last week
• microsoftarchive / New-KrbtgtKeys.ps1
  This script will enable you to reset the krbtgt account password and related keys while minimizing the likelihood of Kerberos authenticat…
  ☆456Updated last year
• PowerShell / GPRegistryPolicyParser
  ☆161Updated 2 years ago
• ryanries / PassFiltEx
  PassFiltEx. An Active Directory Password Filter.
  ☆305Updated 8 months ago
• cyberphor / Soap
  A PowerShell module for incident response and threat hunting.
  ☆38Updated last year
• EliteLoser / PSnmap
  Svendsen Tech's PowerShell nmap-like port scanner accepting IPv4 CIDR notation
  ☆52Updated 3 years ago
• microsoft / MSTIC-Sysmon
  Anything Sysmon related from the MSTIC R&D team
  ☆156Updated last year
• ryanries / ADReplStatus
  AD Replication Status Tool
  ☆251Updated 2 years ago
• atlantsecurity / windows-hardening-scripts
  Windows 10/11 hardening scripts
  ☆268Updated 2 months ago
• ion-storm / sysmon-edr
  Sysmon EDR POC Build within Powershell to prove ability.
  ☆226Updated 4 years ago
• PhrozenIO / PowerRunAsSystem
  PowerRunAsSystem is a PowerShell script, also available as an installable module through the PowerShell Gallery, designed to impersonate …
  ☆268Updated last year
• AaronMargosis / Aaron-Margosis-SysNocturnals-Tools
  A set of troubleshooting, diagnostic, and information utilities (and useful scripts) for Windows
  ☆67Updated 5 months ago
• mtth-bfft / adeleg
  Active Directory delegation management tool
  ☆438Updated 3 months ago
• NextronSystems / sysmon-config
  Sysmon configuration file template with default high-quality event tracing
  ☆567Updated 3 weeks ago
• Kili69 / Tier0-User-Management
  Maintain Tier 0 users. This script take care all Tier 0 users are in the correct OU or in the default user container and add the Kerberos…
  ☆65Updated 10 months ago
• jhochwald / Universal-Winlogbeat-configuration
  Universal Winlogbeat configuration
  ☆33Updated 3 years ago
• Immersive-Labs-Sec / msrc-api
  A collection of tools to interact with Microsoft Security Response Center API
  ☆113Updated 2 years ago
• SpecterOps / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆259Updated 2 weeks ago
• airbus-cert / Winshark
  A wireshark plugin to instrument ETW
  ☆579Updated 4 years ago
• lithnet / ad-password-protection
  Active Directory password filter featuring breached password checking and custom complexity rules
  ☆553Updated last month
• nasbench / EVTX-ETW-Resources
  Event Tracing For Windows (ETW) Resources
  ☆417Updated 3 months ago
• canix1 / SDDL-Converter
  Tool to convert SDDL to readable text
  ☆42Updated 7 years ago
• przybylskirobert / ADSecurity
  Place where I'm putting all the scripts and config files regarding Active Directory Security.
  ☆105Updated last year
• Harvester57 / Security-ADMX
  Custom ADMX template focused on hardening Windows 10 & Windows 11 systems
  ☆92Updated this week
• mihemihe / myADMonitor
  myADMonitor is an open-source Active Directory changes tracking tool
  ☆214Updated 3 months ago
• Devolutions / devolutions-labs
  Self-contained Hyper-V Active Directory Lab Environment
  ☆59Updated 2 weeks ago