Alternatives and similar repositories for ExchangeFilter

Users that are interested in ExchangeFilter are comparing it to the libraries listed below

• Security-Experts-Community / ERMACK
  Enterprise Response Model & Common Knowledge
  ☆39Updated 7 months ago
• Security-Experts-Community / siem-monkey
  Chrome extension for SOC automations
  ☆38Updated 4 months ago
• airbus-cert / ntTraceControl
  Powershell Event Tracing Toolbox
  ☆77Updated 3 years ago
• GenRockeR / mpsiemlib
  MP SIEM SDK
  ☆31Updated last month
• agreenjay / sysmon
  A collection of useful PowerShell tools to collect, organize, and visualize Sysmon event data
  ☆39Updated 5 years ago
• StevenD33 / Lab-DFIR-SOC
  ☆69Updated 4 years ago
• cea-sec / openwec
  An implementation of a Windows Event Collector server running on GNU/Linux.
  ☆90Updated last week
• ion-storm / sysmon-edr
  Sysmon EDR POC Build within Powershell to prove ability.
  ☆226Updated 4 years ago
• Starke427 / Windows-Security-Policy
  Specific guidance and configuration scripts based on Microsoft-recommended security configuration baselines for Windows.
  ☆14Updated 5 years ago
• microsoft / MSTIC-Sysmon
  Anything Sysmon related from the MSTIC R&D team
  ☆156Updated last year
• ANSSI-FR / DFIR4vSphere
  Powershell module for VMWare vSphere forensics
  ☆158Updated last year
• humio / security_monitoring
  ☆43Updated 2 years ago
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆84Updated last month
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆90Updated 4 years ago
• mdecrevoisier / Splunk-input-windows-baseline
  Provides an advanced input.conf file for Windows and 3rd party related software with more than 70 different event log mapped to the MITRE…
  ☆94Updated 7 months ago
• theflakes / Linux_Forensic_Harvester
  Harvest Linux forensic data for operational triage of an event.
  ☆51Updated 2 months ago
• nturley3 / zeek-kerberos-haters-guide
  Kerberos Haters Guide to Zeek Threat Hunting
  ☆34Updated 4 years ago
• sametsazak / sysmon
  Sysmon and wazuh integration with Sigma sysmon rules [updated]
  ☆71Updated 4 years ago
• theflakes / reg_hunter
  Blueteam operational triage registry hunting/forensic tool.
  ☆149Updated 5 months ago
• sumeshi / evtx2es
  A library for fast parse & import of Windows Eventlogs into Elasticsearch.
  ☆86Updated 7 months ago
• jokezone / Update-Sysmon
  This repository was created to aid in the deployment/maintenance of the Sysmon service on a large number of computers.
  ☆83Updated 2 years ago
• NextronSystems / evtx-baseline
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆86Updated last month
• SanWieb / sigWah
  A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset
  ☆38Updated 5 years ago
• fox-it / citrix-netscaler-triage
  Dissect triage scripts for Citrix NetScaler devices
  ☆68Updated 2 months ago
• NVISOsecurity / evtx-hunter
  evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.
  ☆158Updated 4 years ago
• mdecrevoisier / Windows-auditing-baseline
  Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.
  ☆60Updated 8 months ago
• feedb / MPSiem_addons
  реп полезностей для PT MaxPatrol SIEM
  ☆24Updated 2 years ago
• Neo23x0 / sysmon-version-history
  An Inofficial Sysmon Version History (Change Log)
  ☆33Updated 5 years ago
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆73Updated 4 months ago
• socprime / soc_workflow_app_ce
  SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…
  ☆94Updated 3 years ago