Alternatives and similar repositories for EventLogExpert

Users that are interested in EventLogExpert are comparing it to the libraries listed below

• jkerai1 / SoftwareCertificates
  Repository for Software Certs for easy software blocking across corp environments, for example, using MDE IOC
  ☆45Updated last week
• Harvester57 / Security-ADMX
  Custom ADMX template focused on hardening Windows 10 & Windows 11 systems
  ☆85Updated this week
• EvotecIT / VirusTotalAnalyzer
  PowerShell module that intearacts with the VirusTotal service using a VirusTotal API (free)
  ☆60Updated 6 months ago
• AaronMargosis / Aaron-Margosis-SysNocturnals-Tools
  A set of troubleshooting, diagnostic, and information utilities for Windows
  ☆59Updated 3 weeks ago
• ydkhatri / OneDrive
  OneDrive log .ODL reader
  ☆141Updated 8 months ago
• THEVER1TAS / sysmon-config
  Sysmon configuration file templates with advanced event tracing and blocking
  ☆41Updated last week
• EvotecIT / PasswordSolution
  This module allows the creation of password expiry emails for users, managers, administrators, and security according to defined template…
  ☆154Updated 2 months ago
• MicrosoftDocs / defender-docs
  ☆85Updated this week
• reprise99 / 4688-sysmon
  ☆61Updated 2 years ago
• cyberphor / Soap
  A PowerShell module for incident response and threat hunting.
  ☆34Updated last year
• microsoft / KqlTools
  A command line tool to explore real-time streams of events.
  ☆87Updated 5 months ago
• mttaggart / venture
  Venture: Cross-Platform GUI tool for parsing and analyzing Windows event logs
  ☆89Updated 5 months ago
• przybylskirobert / ADSecurity
  Place where I'm putting all the scripts and config files regarding Active Directory Security.
  ☆100Updated 8 months ago
• reprise99 / kql-for-dfir
  A guide to using Azure Data Explorer and KQL for DFIR
  ☆107Updated 3 years ago
• Azure / MDTI-Solutions
  Repository to publish sample use cases, templates, solutions, automations for Microsoft Defender Threat Intelligence (MDTI) product
  ☆79Updated 10 months ago
• strozfriedberg / sidr
  Search Index Database Reporter
  ☆112Updated 8 months ago
• moaistory / WinSearchDBAnalyzer
  http://moaistory.blogspot.com/2018/10/winsearchdbanalyzer.html
  ☆123Updated 11 months ago
• merill / microsoft-info
  Repository hosting a static list of Microsoft First party apps and Graph permissions that's updated daily
  ☆144Updated this week
• WildByDesign / WDACTrayTool
  System Tray Tool for WDAC
  ☆36Updated 3 weeks ago
• jflieben / assortedFunctionsV2
  ☆76Updated last month
• Truvis / Sentinel
  ☆29Updated 2 months ago
• Devolutions / devolutions-labs
  Self-contained Hyper-V Active Directory Lab Environment
  ☆59Updated 2 weeks ago
• KnudsenMorten / ClientInspectorV2
  ClientInspectorV2 - Unleashing the power of Azure LogAnalytics, Azure Data Collection Rules, Log Ingestion API by doing client inventory …
  ☆24Updated 2 years ago
• Beercow / OneDriveExplorer
  OneDriveExplorer is a command line and GUI based application for reconstructing the folder structure of OneDrive from the <UserCid>.dat a…
  ☆205Updated 2 weeks ago
• davidhowell-tx / PS-SentinelOne
  PowerShell module for SentinelOne API
  ☆67Updated 2 years ago
• YongRhee-MDE / LiveResponse
  M365 MDATP Live Response sample scripts
  ☆74Updated 8 months ago
• LearningKijo / MDEtester
  MDE Tester is designed to help testing various features in Microsoft Defender for Endpoint.
  ☆190Updated last year
• AaronMargosis / Aaron-Margosis-SysNocturnals-Extras
  Restoring some old tools to the web
  ☆11Updated 8 months ago
• MicrosoftDocs / WDAC-Toolkit
  Documentation and tools to access Windows Defender Application Control (WDAC) technology.
  ☆234Updated last month
• Semperis / PK-AADAppReg
  ☆33Updated 7 months ago