Alternatives and similar repositories for ExchangeFilter

Users that are interested in ExchangeFilter are comparing it to the libraries listed below

• Security-Experts-Community / ERMACK
  Enterprise Response Model & Common Knowledge
  ☆38Updated 4 months ago
• Security-Experts-Community / siem-monkey
  Chrome extension for SOC automations
  ☆36Updated last month
• GenRockeR / mpsiemlib
  MP SIEM SDK
  ☆30Updated 9 months ago
• StevenD33 / Lab-DFIR-SOC
  ☆70Updated 4 years ago
• feedb / MPSiem_addons
  реп полезностей для PT MaxPatrol SIEM
  ☆24Updated 2 years ago
• ion-storm / sysmon-edr
  Sysmon EDR POC Build within Powershell to prove ability.
  ☆226Updated 4 years ago
• airbus-cert / ntTraceControl
  Powershell Event Tracing Toolbox
  ☆78Updated 3 years ago
• microsoft / MSTIC-Sysmon
  Anything Sysmon related from the MSTIC R&D team
  ☆156Updated last year
• Hestat / ossec-sysmon
  A Ruleset to enhance detection capabilities of Ossec using Sysmon
  ☆94Updated 3 years ago
• sametsazak / sysmon
  Sysmon and wazuh integration with Sigma sysmon rules [updated]
  ☆70Updated 4 years ago
• giorgioditizio / APTs-database
  A repository with data about APTs
  ☆13Updated 2 years ago
• theflakes / Linux_Forensic_Harvester
  Harvest Linux forensic data for operational triage of an event.
  ☆51Updated last year
• rstcloud / rstthreats
  Aggregated Indicators of Compromise collected and cross-verified from multiple open and community-supported sources, enriched and ranked …
  ☆35Updated last year
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆175Updated 2 weeks ago
• NVISOsecurity / evtx-hunter
  evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.
  ☆156Updated 3 years ago
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆81Updated 3 weeks ago
• Starke427 / Windows-Security-Policy
  Specific guidance and configuration scripts based on Microsoft-recommended security configuration baselines for Windows.
  ☆14Updated 5 years ago
• theflakes / reg_hunter
  Blueteam operational triage registry hunting/forensic tool.
  ☆150Updated 2 months ago
• SanWieb / sigWah
  A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset
  ☆36Updated 5 years ago
• nturley3 / zeek-kerberos-haters-guide
  Kerberos Haters Guide to Zeek Threat Hunting
  ☆32Updated 4 years ago
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆73Updated last month
• bi-zone / Log4j_Detector
  Detection of Log4j in memory
  ☆40Updated 3 years ago
• mdecrevoisier / Windows-WEC-server_auto-deploy
  PowerShell scripts for fast Windows Event Collector configuration with Palantir toolset
  ☆22Updated 3 years ago
• mdecrevoisier / Splunk-input-windows-baseline
  Provides an advanced input.conf file for Windows and 3rd party related software with more than 70 different event log mapped to the MITRE…
  ☆93Updated 4 months ago
• swisscom / ArtifactCollectionMatrix
  Forensic Artifact Collection Tool Matrix
  ☆91Updated last year
• agreenjay / sysmon
  A collection of useful PowerShell tools to collect, organize, and visualize Sysmon event data
  ☆39Updated 5 years ago
• Fadavvi / Yara-Repo
  A script to collect (the most famous) Yara rules from more than 150 free resources. Free alternative to: https://valhalla.nextron-system…
  ☆28Updated 2 years ago
• NextronSystems / thor-lite
  Fast IOC and YARA Scanner
  ☆84Updated 5 years ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 10 months ago
• fireeye / HXTool
  HXTool is an extended user interface for the FireEye HX Endpoint product. HXTool can be installed on a dedicated server or on your physic…
  ☆84Updated last year