Alternatives and similar repositories for ExchangeFilter

Users that are interested in ExchangeFilter are comparing it to the libraries listed below

• airbus-cert / ntTraceControl
  Powershell Event Tracing Toolbox
  ☆76Updated 3 years ago
• GenRockeR / mpsiemlib
  MP SIEM SDK
  ☆26Updated 6 months ago
• Security-Experts-Community / siem-monkey
  Chrome extension for SOC automations
  ☆35Updated 3 weeks ago
• Starke427 / Windows-Security-Policy
  Specific guidance and configuration scripts based on Microsoft-recommended security configuration baselines for Windows.
  ☆14Updated 4 years ago
• Security-Experts-Community / ERMACK
  Enterprise Response Model & Common Knowledge
  ☆37Updated last month
• cea-sec / openwec
  An implementation of a Windows Event Collector server running on GNU/Linux.
  ☆76Updated last week
• giorgioditizio / APTs-database
  A repository with data about APTs
  ☆13Updated 2 years ago
• StevenD33 / Lab-DFIR-SOC
  ☆68Updated 4 years ago
• feedb / MPSiem_addons
  реп полезностей для PT MaxPatrol SIEM
  ☆24Updated last year
• nturley3 / zeek-kerberos-haters-guide
  Kerberos Haters Guide to Zeek Threat Hunting
  ☆30Updated 3 years ago
• ion-storm / sysmon-edr
  Sysmon EDR POC Build within Powershell to prove ability.
  ☆226Updated 4 years ago
• microsoft / MSTIC-Sysmon
  Anything Sysmon related from the MSTIC R&D team
  ☆155Updated last year
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆88Updated 4 years ago
• mdecrevoisier / Windows-auditing-baseline
  Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.
  ☆55Updated 2 months ago
• agreenjay / sysmon
  A collection of useful PowerShell tools to collect, organize, and visualize Sysmon event data
  ☆39Updated 5 years ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 8 months ago
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆79Updated last month
• mdecrevoisier / Windows-WEC-server_auto-deploy
  PowerShell scripts for fast Windows Event Collector configuration with Palantir toolset
  ☆22Updated 3 years ago
• sandialabs / gait
  Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies
  ☆35Updated last year
• humio / security_monitoring
  ☆42Updated 2 years ago
• jebidiah-anthony / Windows-Event-Forwarder
  Setting up a Windows Event Collector
  ☆11Updated 2 years ago
• mdecrevoisier / Splunk-input-windows-baseline
  Provides an advanced input.conf file for Windows and 3rd party related software with more than 70 different event log mapped to the MITRE…
  ☆92Updated last month
• sametsazak / sysmon
  Sysmon and wazuh integration with Sigma sysmon rules [updated]
  ☆68Updated 4 years ago
• theflakes / Linux_Forensic_Harvester
  Harvest Linux forensic data for operational triage of an event.
  ☆51Updated last year
• SanWieb / sigWah
  A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset
  ☆33Updated 5 years ago
• NVISOsecurity / evtx-hunter
  evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.
  ☆155Updated 3 years ago
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆67Updated last year
• jokezone / Update-Sysmon
  This repository was created to aid in the deployment/maintenance of the Sysmon service on a large number of computers.
  ☆82Updated 2 years ago
• rstcloud / rstthreats
  Aggregated Indicators of Compromise collected and cross-verified from multiple open and community-supported sources, enriched and ranked …
  ☆34Updated 11 months ago
• olafhartong / sysmon-modular-linux
  A repository of Sysmon For Linux configuration modules
  ☆15Updated 3 years ago