This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.
☆22Jan 30, 2018Updated 8 years ago
Alternatives and similar repositories for WinLogsZero2Hero
Users that are interested in WinLogsZero2Hero are comparing it to the libraries listed below
Sorting:
- ☆12Sep 4, 2013Updated 12 years ago
- Custom scripts released for BSidesDC 2016☆14Oct 19, 2016Updated 9 years ago
- Automated, Collection, and Enrichment Platform☆324Nov 14, 2019Updated 6 years ago
- PowerShell script to find 'vulnerable' security-related GPOs that should be hardended☆198Jun 1, 2018Updated 7 years ago
- Zeek plugin to generate data on per-packet sizes and intervals☆14Apr 21, 2020Updated 5 years ago
- PowerShell script useful for Incident Response and security/configuration baselines for Windows Vista and later☆20Feb 23, 2016Updated 10 years ago
- Dashboards and loader for ROCK NSM dashboards☆49Mar 13, 2023Updated 2 years ago
- Elasticsearch/Kibana environment and log data for Sigma workshop☆26Dec 20, 2019Updated 6 years ago
- Currently not updated for WMIEvent module...☆262Feb 23, 2016Updated 10 years ago
- Security related useful Powershell scripts☆19Sep 13, 2019Updated 6 years ago
- Build a fast, free, and effective Threat Hunting/Incident Response Console with Windows Event Forwarding and PowerBI☆201Dec 11, 2017Updated 8 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Jul 23, 2015Updated 10 years ago
- Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.☆937Dec 12, 2023Updated 2 years ago
- A simple reflective dll example☆19Jan 8, 2017Updated 9 years ago
- Offensive Data Storage☆61Sep 1, 2016Updated 9 years ago
- Powershell to read ETL file on an interval and convert it to an EVTX (so Windows Event Forwarding can 'subscribe')☆11May 16, 2017Updated 8 years ago
- Powershell modules to provide utility functions for day-to-day problems in .NET web development.☆11Nov 3, 2016Updated 9 years ago
- PowerShell module for working with Project Honolulu☆11Oct 12, 2017Updated 8 years ago
- ☆166Feb 13, 2020Updated 6 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆122Jul 12, 2021Updated 4 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Aug 30, 2022Updated 3 years ago
- malware-traffic-analysis.net PCAPs repository.☆37Jun 9, 2016Updated 9 years ago
- InvestigationPlaybookSpec☆71Sep 26, 2017Updated 8 years ago
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Sep 17, 2019Updated 6 years ago
- Presentation and resources for my 2017 PowerShell Summit 'Mocking' presentaiton☆13Apr 11, 2017Updated 8 years ago
- Functions for manipulating paths, PATH variable and PowerShell modules loading paths.☆10Feb 22, 2026Updated last week
- Articfacts for comparing commands between Windows PowerShell versions☆11Sep 27, 2016Updated 9 years ago
- PowerShell module designed to add extended functionality to the querying and manipulation of MDT Applications☆10Aug 17, 2017Updated 8 years ago
- Windows privileges add to the complexity of Windows user permissions. Each additional user added to a group could lead to a domain compro…☆10Mar 2, 2018Updated 8 years ago
- Next major release of sniffMyPackets - Now with added packet loving☆12Mar 19, 2015Updated 10 years ago
- Script to gather Auditpol data forest wide as well as various other Audit Metadata from DC's, Servers and Workstations.☆12Jul 6, 2017Updated 8 years ago
- ☆11Oct 16, 2022Updated 3 years ago
- PowerShell Module to provide Network Block Device like functionality on Windows Hosts☆13Sep 27, 2015Updated 10 years ago
- Home of the "ParameterCache" PowerShell module, adding cached parameter values and autocompletion☆11Jan 15, 2021Updated 5 years ago
- PowerShell GUI for Script Configuration☆11Mar 15, 2017Updated 8 years ago
- Security Onion Splunk App☆10May 18, 2015Updated 10 years ago
- ☆16Jun 1, 2018Updated 7 years ago
- Boston PowerShell User Group materials and links☆13May 5, 2018Updated 7 years ago
- Executes common PowerSploit Powerview functions then combines output into a spreadsheet for easy analysis.☆70Jul 26, 2018Updated 7 years ago