Alternatives and similar repositories for EsetLogParser

Users that are interested in EsetLogParser are comparing it to the libraries listed below

• stairwell-inc / cobalt-strike-stager-parser
  ☆34Updated 2 years ago
• woanware / etw-event-dumper
  ☆33Updated 3 years ago
• mandiant / apooxml
  Generate YARA rules for OOXML documents.
  ☆38Updated last year
• RandomRhythm / mal2csv
  Malformed Access Log to CSV - Convert Web Server Access Logs to CSV
  ☆17Updated 8 months ago
• DissectMalware / OfficeForensicTools
  A set of tools for collecting forensic information
  ☆26Updated 5 years ago
• mandiant / goauditparser
  ☆45Updated last year
• NextronSystems / TA-aurora
  Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …
  ☆13Updated 2 years ago
• aaronst / talks
  Presentation materials for talks I've given.
  ☆20Updated 5 years ago
• keydet89 / LNK
  Repository for LNK stuff
  ☆30Updated 2 years ago
• DidierStevens / AdHoc
  AdHoc solutions
  ☆48Updated last year
• nettitude / PoshC2_IOCs
  A list of IOCs applicable to PoshC2
  ☆24Updated 4 years ago
• darkoperator / vscode-sysmon
  Visual Studio Code Microsoft Sysinternal Sysmon configuration file extension.
  ☆51Updated last year
• jschicht / SetMace
  Manipulate timestamps on NTFS
  ☆50Updated 10 years ago
• jeFF0Falltrades / IoCs
  A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo
  ☆29Updated 4 years ago
• msuhanov / regf-samples
  Windows registry samples
  ☆23Updated 6 years ago
• Silv3rHorn / 4n6_misc
  Miscellaneous Scripts
  ☆17Updated 4 years ago
• trustedsec / tscopy
  ☆90Updated 2 years ago
• ignacioj / mftf
  $MFT parser (from live systems or a copy of the $MFT) and raw file copy utility
  ☆36Updated 9 months ago
• tbarabosch / apihash_to_yara
  Generates YARA rules to detect malware using API hashing
  ☆17Updated 4 years ago
• StefanKelm / yara-rules
  Links to malware-related YARA rules
  ☆15Updated 2 years ago
• ruppde / yara_rules
  Yara rules
  ☆21Updated 2 years ago
• SadProcessor / WatchDog
  BloodHound Data Scanner
  ☆45Updated 4 years ago
• mdegrazia / KAPE_Tools
  Tools and Binaries to use with KAPE
  ☆12Updated 5 years ago
• nccgroup / WindowsMemPageDelta
  A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection
  ☆31Updated 4 years ago
• forensiclunch / ETLParser
  Binary commandline executable to parse ETL files
  ☆67Updated 6 years ago
• IceMoonHSV / Sim
  C# User Simulation
  ☆32Updated 2 years ago
• AndrewRathbun / SANSGoldPaperResearch_FOR500_Rathbun
  A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.
  ☆27Updated 2 years ago
• EricZimmerman / Sum
  ☆19Updated 4 months ago
• OmerYa / Babel-Shellfish
  Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.
  ☆43Updated 6 years ago
• Beercow / SEPparser
  Script for parsing Symantec Endpoint Protection logs, VBNs, and ccSubSDK database.
  ☆64Updated 2 years ago