Alternatives and similar repositories for EventLogExpert

Users that are interested in EventLogExpert are comparing it to the libraries listed below

• Harvester57 / Security-ADMX
  Custom ADMX template focused on hardening Windows 10 & Windows 11 systems
  ☆88Updated this week
• AaronMargosis / Aaron-Margosis-SysNocturnals-Tools
  A set of troubleshooting, diagnostic, and information utilities (and useful scripts) for Windows
  ☆65Updated this week
• jkerai1 / SoftwareCertificates
  Repository for Software Certs for easy software blocking across corp environments, for example, using MDE IOC
  ☆47Updated last week
• ydkhatri / OneDrive
  OneDrive log .ODL reader
  ☆146Updated 9 months ago
• EvotecIT / VirusTotalAnalyzer
  PowerShell module that intearacts with the VirusTotal service using a VirusTotal API (free)
  ☆61Updated this week
• MicrosoftDocs / defender-docs
  ☆92Updated this week
• MicrosoftDocs / WDAC-Toolkit
  Documentation and tools to access Windows Defender Application Control (WDAC) technology.
  ☆241Updated this week
• EvotecIT / PasswordSolution
  This module allows the creation of password expiry emails for users, managers, administrators, and security according to defined template…
  ☆156Updated 4 months ago
• merill / microsoft-info
  Repository hosting a static list of Microsoft First party apps and Graph permissions that's updated daily
  ☆150Updated this week
• cyberphor / Soap
  A PowerShell module for incident response and threat hunting.
  ☆34Updated last year
• THEVER1TAS / sysmon-config
  Sysmon configuration file templates with advanced event tracing and blocking
  ☆41Updated last month
• ThomasVrhydn / MDE-troubleshooter
  This tool is designed to assist you in analyzing issues related to Defender for Endpoint on your local endpoint. It offers a centralized …
  ☆69Updated last month
• reprise99 / 4688-sysmon
  ☆61Updated 2 years ago
• LETHAL-FORENSICS / Microsoft-Analyzer-Suite
  A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID
  ☆511Updated 3 weeks ago
• atlantsecurity / windows-hardening-scripts
  Windows 10/11 hardening scripts
  ☆257Updated 8 months ago
• LearningKijo / MDEtester
  MDE Tester is designed to help testing various features in Microsoft Defender for Endpoint.
  ☆191Updated last year
• Azure / securedworkstation
  Intune managed Secured workstation
  ☆250Updated last year
• anthonws / MDATP_PoSh_Scripts
  ☆50Updated last year
• Semperis / PK-AADAppReg
  ☆35Updated 8 months ago
• davidhowell-tx / PS-SentinelOne
  PowerShell module for SentinelOne API
  ☆67Updated 2 years ago
• YongRhee-MDE / LiveResponse
  M365 MDATP Live Response sample scripts
  ☆76Updated 9 months ago
• Neo23x0 / sysmon-config
  Sysmon configuration file template with default high-quality event tracing
  ☆504Updated 2 weeks ago
• microsoft / mdefordownlevelserver
  ☆82Updated last year
• guyrleech / Microsoft
  Scripts and tools for use with Microsoft products/technologies
  ☆271Updated last month
• AaronMargosis / Aaron-Margosis-SysNocturnals-Extras
  Restoring some of my older tools to the web
  ☆11Updated 10 months ago
• rucam / defender-comparison
  ☆60Updated last year
• Sleepw4lker / TameMyCerts
  Policy Module for Microsoft Active Directory Certificate Services
  ☆218Updated last week
• PwC-IR / Office-365-Extractor
  The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL)
  ☆265Updated 3 years ago
• microsoft / mstic
  Microsoft Threat Intelligence
  ☆189Updated this week
• nicolonsky / ITDR
  Collection of Microsoft Identity Threat Detection and Response resources.
  ☆49Updated 3 weeks ago