logpresso / community

Related projects ⓘ

Alternatives and complementary repositories for community

• StrangerealIntel / DeltaFlare
  ☆12Updated 3 years ago
• nccgroup / WindowsMemPageDelta
  A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection
  ☆28Updated 4 years ago
• c2defense / network-device-logs
  Analytics for Accounting logs from Network devices
  ☆16Updated 3 years ago
• fatihsirin / Tweettioc-Splunk-App
  Tweettioc Splunk App
  ☆20Updated 4 years ago
• woanware / etw-event-dumper
  ☆31Updated 2 years ago
• Starke427 / Windows-Security-Policy
  Specific guidance and configuration scripts based on Microsoft-recommended security configuration baselines for Windows.
  ☆11Updated 4 years ago
• nccgroup / UninstalledAppCanary
  A Canary which fires when uninstalled
  ☆34Updated 3 years ago
• ssp4rk / threatintel
  ☆11Updated 3 years ago
• OTRF / bloodhound-notebooks
  Notebooks created to attack and secure Active Directory environments
  ☆27Updated 5 years ago
• idnahacks / NetCeasePlusPlus
  Takes the original idea of NetCease and adds functionality
  ☆24Updated 2 years ago
• darkoperator / vscode-sysmon
  Visual Studio Code Microsoft Sysinternal Sysmon configuration file extension.
  ☆51Updated last year
• ryanmrestivo / blue-team
  Some portable tools, some YARA, some Python, and a little bit of love. Not all of these tools can be used in incident response. Use PEs…
  ☆33Updated 11 months ago
• robwillisinfo / Invoke-Decoder
  Invoke-Decoder – A PowerShell script to decode/deobfuscate malware samples
  ☆20Updated 4 years ago
• airbus-cert / PSTrace
  Trace ScriptBlock execution for powershell v2
  ☆39Updated 4 years ago
• refractionPOINT / limacharlie
  Old home of LimaCharlie, open source EDR
  ☆28Updated last year
• StefanKelm / yara-rules
  Links to malware-related YARA rules
  ☆14Updated 2 years ago
• DissectMalware / OfficeForensicTools
  A set of tools for collecting forensic information
  ☆26Updated 4 years ago
• jsecurity101 / jsecurity101
  ☆14Updated 7 months ago
• k3idii / ION
  Indicators of Normality
  ☆12Updated 2 years ago
• kirk-sayre-work / xlmulator
  Python emulator for Excel XLM macros.
  ☆18Updated 4 years ago
• GDATAAdvancedAnalytics / winreg-tasks
  ☆14Updated 2 years ago
• rgeoghan / app-password-persistence
  Using Microsoft 365 App Passwords for persistence
  ☆23Updated 4 years ago
• jipegit / IncidentsMindMaps
  Cybersecurity Incidents Mind Maps
  ☆32Updated 3 years ago
• ohjeongwook / WindowsEventTools
  Collection Of Scripts And Utilities For Windows Event Hunting
  ☆16Updated 4 years ago
• mandiant / apooxml
  Generate YARA rules for OOXML documents.
  ☆37Updated last year
• SentineLabs / PowerTrick
  This is a repository for the public blog with Labs indicators of compromise and code
  ☆18Updated 4 years ago
• SadProcessor / EzETW
  Cmdlets for capturing Windows Events
  ☆13Updated 2 years ago
• JPCERTCC / SurfaceAnalysis-on-Cloud
  Surface Analysis System on Cloud
  ☆19Updated 11 months ago