Alternatives and similar repositories for Windows-Event-Forwarder

Users that are interested in Windows-Event-Forwarder are comparing it to the libraries listed below

• airbus-cert / ntTraceControl
  Powershell Event Tracing Toolbox
  ☆75Updated 3 years ago
• mandiant / citrix-ioc-scanner-cve-2023-3519
  ☆65Updated last year
• MichaelGrafnetter / active-directory-firewall
  Active Directory Firewall
  ☆69Updated last week
• cyberphor / Soap
  A PowerShell module for incident response and threat hunting.
  ☆33Updated 11 months ago
• gunnarhaslinger / Windows-Defender-Exploit-Guard-Configuration
  Configure Windows Defender ExploitGuard, Reset all ProcessMitigation, Import clean recommended Baseline Configuration
  ☆41Updated 3 years ago
• sadshade / veeam-creds
  Collection of scripts to retrieve stored passwords from Veeam Backup
  ☆129Updated 5 months ago
• Immersive-Labs-Sec / msrc-api
  A collection of tools to interact with Microsoft Security Response Center API
  ☆97Updated last year
• YossiSassi / Get-UserSession
  Query user sessions for the entire domain (Interactive/RDP etc), allowing you to query a Username and see all their logged on sessions, w…
  ☆92Updated last month
• ANSSI-FR / DFIR4vSphere
  Powershell module for VMWare vSphere forensics
  ☆150Updated 6 months ago
• SpecterOps / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆221Updated 3 months ago
• Harvester57 / Security-ADMX
  Custom ADMX template focused on hardening Windows 10 & Windows 11 systems
  ☆82Updated last week
• AaronMargosis / Aaron-Margosis-SysNocturnals-Tools
  A set of troubleshooting, diagnostic, and information utilities for Windows
  ☆56Updated last month
• LuccaSA / PingCastle-Notify
  Monitor your PingCastle scans to highlight the rule diff between two scans
  ☆111Updated 9 months ago
• zeronetworks / rpcfirewall
  ☆514Updated 5 months ago
• WildByDesign / ACLViewer
  ACL Viewer for Windows
  ☆126Updated last week
• jkerai1 / SoftwareCertificates
  Repository for Software Certs for easy software blocking across corp environments, for example, using MDE IOC
  ☆39Updated this week
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆88Updated 3 years ago
• olafhartong / MDE-AuditCheck
  MDE relies on some of the Audit settings to be enabled
  ☆97Updated 2 years ago
• PhrozenIO / PowerRunAsSystem
  PowerRunAsSystem is a PowerShell script, also available as an installable module through the PowerShell Gallery, designed to impersonate …
  ☆261Updated 7 months ago
• zeronetworks / ldapfw
  Protect your Domain Controllers by auditing and restricting LDAP requests
  ☆155Updated 4 months ago
• jakehildreth / PowerPUG
  A tiny tool built to help AD Admins tame the Protected Users group.
  ☆46Updated 3 months ago
• ScarredMonk / PopulateActiveDirectory
  Powershell script to build active directory forest and populate AD with random AD objects including AD users objects, computers objects, …
  ☆35Updated 3 years ago
• ion-storm / sysmon-edr
  Sysmon EDR POC Build within Powershell to prove ability.
  ☆224Updated 4 years ago
• Kili69 / Tier0-User-Management
  Maintain Tier 0 users. This script take care all Tier 0 users are in the correct OU or in the default user container and add the Kerberos…
  ☆62Updated last month
• EliteLoser / PSnmap
  Svendsen Tech's PowerShell nmap-like port scanner accepting IPv4 CIDR notation
  ☆54Updated 2 years ago
• THEVER1TAS / sysmon-config
  Sysmon configuration file templates with advanced event tracing and blocking
  ☆40Updated last month
• p0w3rsh3ll / NetCease
  ☆62Updated 3 years ago
• davidprowe / AD_Sec_Tools
  ☆114Updated 5 years ago
• akamai / Invoke-DHCPCheckup
  ☆103Updated last year
• kacos2000 / WinEDB
  Windows.EDB Browser
  ☆56Updated 2 years ago