jebidiah-anthony / Windows-Event-Forwarder

Related projects ⓘ

Alternatives and complementary repositories for Windows-Event-Forwarder

• airbus-cert / ntTraceControl
  Powershell Event Tracing Toolbox
  ☆72Updated 2 years ago
• cyberphor / Soap
  A PowerShell module for incident response and threat hunting.
  ☆33Updated 5 months ago
• LuccaSA / PingCastle-Notify
  Monitor your PingCastle scans to highlight the rule diff between two scans
  ☆107Updated 3 months ago
• sadshade / veeam-creds
  Collection of scripts to retrieve stored passwords from Veeam Backup
  ☆96Updated last year
• AaronMargosis / Aaron-Margosis-SysNocturnals-Tools
  A set of troubleshooting, diagnostic, and information utilities for Windows
  ☆52Updated 3 weeks ago
• ANSSI-FR / DFIR4vSphere
  Powershell module for VMWare vSphere forensics
  ☆140Updated this week
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆89Updated 3 years ago
• p0w3rsh3ll / SEC505
  ☆48Updated 4 years ago
• davidhowell-tx / PS-SentinelOne
  PowerShell module for SentinelOne API
  ☆63Updated last year
• atlantsecurity / windows-hardening-scripts
  Windows 10/11 hardening scripts
  ☆218Updated 9 months ago
• mandiant / citrix-ioc-scanner-cve-2023-3519
  ☆65Updated last year
• TrimarcJake / BlueTuxedo
  A tiny tool to find and fix common misconfigurations in Active Directory-integrated DNS
  ☆96Updated last month
• rgl / windows-evaluation-isos-scraper
  Scrapes the Windows Evaluation ISO addresses into a JSON data file
  ☆24Updated last week
• scriptjunkie / fwallower
  Analyze Windows Firewall outbound blocks and selectively allow traffic
  ☆69Updated last year
• GreyCorbel / admpwd-e
  AdmPwd.E client and support tools
  ☆31Updated 4 years ago
• Harvester57 / Security-ADMX
  Custom ADMX template focused on hardening Windows 10 & Windows 11 systems
  ☆75Updated last week
• THEVER1TAS / sysmon-config
  Sysmon configuration file templates with advanced event tracing and blocking
  ☆34Updated last month
• EricZimmerman / evtx
  C# based evtx parser with lots of extras
  ☆281Updated 2 months ago
• PowerShell / GPRegistryPolicyParser
  ☆146Updated last year
• mdecrevoisier / Splunk-input-windows-baseline
  Provides an advanced input.conf file for Windows and 3rd party related software with more than 70 different event log mapped to the MITRE…
  ☆81Updated last month
• CRYPT-ON-IT / policies_hardening_interface
  Windows and macOS Hardening Interface to make security more accessible.
  ☆38Updated 2 years ago
• olafhartong / MDE-AuditCheck
  MDE relies on some of the Audit settings to be enabled
  ☆97Updated 2 years ago
• vradchenko / PowerShell-SentinelOne
  PowerShell module for SentinelOne API
  ☆25Updated 3 years ago
• gtworek / VolatileDataCollector
  ☆187Updated 2 weeks ago
• p0w3rsh3ll / NetCease
  ☆58Updated 3 years ago
• nasbench / EVTX-ETW-Resources
  Event Tracing For Windows (ETW) Resources
  ☆348Updated last month
• jhochwald / Universal-Winlogbeat-configuration
  Universal Winlogbeat configuration
  ☆30Updated 2 years ago
• Immersive-Labs-Sec / msrc-api
  A collection of tools to interact with Microsoft Security Response Center API
  ☆95Updated 10 months ago
• PhrozenIO / PowerRunAsSystem
  PowerRunAsSystem is a PowerShell script, also available as an installable module through the PowerShell Gallery, designed to impersonate …
  ☆250Updated 3 weeks ago
• Sleepw4lker / TameMyCerts
  Policy Module for Microsoft Active Directory Certificate Services
  ☆123Updated last week