SysmonX - An Augmented Drop-In Replacement of Sysmon
☆220Sep 17, 2019Updated 6 years ago
Alternatives and similar repositories for sysmonx
Users that are interested in sysmonx are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆175Sep 9, 2020Updated 5 years ago
- Live hunting of code injection techniques☆387Aug 22, 2019Updated 6 years ago
- ☆39Oct 29, 2020Updated 5 years ago
- Utilities for Sysmon☆1,645Apr 4, 2026Updated last month
- ☆14Mar 8, 2019Updated 7 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Sysmon EDR POC Build within Powershell to prove ability.☆226May 1, 2021Updated 5 years ago
- Kernel Pool Monitor☆128Mar 6, 2022Updated 4 years ago
- Process Monitor X v2☆656Jan 22, 2024Updated 2 years ago
- Open Source EDR for Windows☆1,304Feb 25, 2023Updated 3 years ago
- Trace ScriptBlock execution for powershell v2☆40Jan 14, 2020Updated 6 years ago
- Simple project that demonstrates how an ETW consumer can be created just by using NTDLL☆148Feb 23, 2019Updated 7 years ago
- A repository that maps API calls to Sysmon Event ID's.☆122Nov 14, 2022Updated 3 years ago
- Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.☆941Dec 12, 2023Updated 2 years ago
- Open EDR public repository☆2,664Updated this week
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Research on Windows Kernel Executive Callback Objects☆317Feb 22, 2020Updated 6 years ago
- KrabsETW provides a modern C++ wrapper and a .NET wrapper around the low-level ETW trace consumption functions.☆769Apr 14, 2026Updated last month
- Windows CVE主防(HIPS/HIDS)☆57May 2, 2026Updated 3 weeks ago
- HTTP/HTTPS/DNS inspector (windows driver)☆24Feb 20, 2019Updated 7 years ago
- ☆68Mar 3, 2022Updated 4 years ago
- Windows Events Attack Samples☆2,560Jan 24, 2023Updated 3 years ago
- Hades HIDS/HIPS for Windows☆308May 3, 2026Updated 3 weeks ago
- Silencing Sysmon via driver unload☆238Oct 13, 2022Updated 3 years ago
- A driver that hooks C: volume using symbolic link callback to track all FS access to the volume☆108Apr 24, 2020Updated 6 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Sysmon shenanigans☆66Oct 9, 2020Updated 5 years ago
- A YARA-integrated process denial framework for Windows☆398Feb 15, 2020Updated 6 years ago
- An easy ATT&CK-based Sysmon hunting tool, showing in Blackhat USA 2019 Arsenal☆205Apr 18, 2022Updated 4 years ago
- Automatically exported from code.google.com/p/hf-2011☆15Feb 12, 2016Updated 10 years ago
- ☆837Jun 1, 2023Updated 2 years ago
- PeaceMaker Threat Detection is a Windows kernel-based application that detects advanced techniques used by malware.☆430May 22, 2020Updated 6 years ago
- ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detecti…☆319Mar 20, 2024Updated 2 years ago
- A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs☆812May 15, 2026Updated last week
- Events from all manifest-based and mof-based ETW providers across Windows 10 versions☆332May 2, 2024Updated 2 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A repository of sysmon configuration modules☆3,038Aug 21, 2024Updated last year
- A POC for Windows Extension Host hooking☆24Jul 13, 2019Updated 6 years ago
- https://key08.com/index.php/2021/10/19/1375.html☆71May 11, 2022Updated 4 years ago
- Open-source EDR kernel-component for system monitoring and DLL injection☆33Nov 14, 2020Updated 5 years ago
- Investigate suspicious activity by visualizing Sysmon's event log☆431Dec 22, 2023Updated 2 years ago
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,183Jul 26, 2023Updated 2 years ago
- Sysmon-Like research tool for ETW☆389Nov 15, 2022Updated 3 years ago