olafhartong/TA-Sysmon-deploy external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

olafhartong/TA-Sysmon-deploy

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/olafhartong/TA-Sysmon-deploy)

Close

olafhartong / TA-Sysmon-deployView on GitHubMore

• External links
• Readme badge

Deploy and maintain Symon through the Splunk Deployment Sever

☆32Jul 30, 2020Updated 5 years ago

Alternatives and similar repositories for TA-Sysmon-deploy

Users that are interested in TA-Sysmon-deploy are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• mattifestation / PSSysmonTools

  View on GitHub
  Sysmon Tools for PowerShell
  ☆233Aug 17, 2018Updated 7 years ago
• MHaggis / app_splunk_sysmon_hunter

  View on GitHub
  Splunk App to assist Sysmon Threat Hunting
  ☆38Mar 7, 2017Updated 9 years ago
• corelight / Dashboards-Splunk-DNS-Hunting-Beaconing

  View on GitHub
  DNS Dashboard for hunting and identifying beaconing
  ☆16Jul 29, 2020Updated 5 years ago
• MarkBaggett / domain_stats2

  View on GitHub
  ☆14Feb 8, 2020Updated 6 years ago
• mutedmouse / ta-volatility

  View on GitHub
  Technical add-on to ingest json formatted volatility memory analysis plugin outputs
  ☆13May 21, 2018Updated 7 years ago
• Wordpress hosting with auto-scaling - Free Trial • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• MHaggis / sysmon-splunk-app

  View on GitHub
  Sysmon Splunk App
  ☆47Aug 21, 2018Updated 7 years ago
• securethelogs / Powershell

  View on GitHub
  ☆14Nov 12, 2021Updated 4 years ago
• rkovar / dns_detection

  View on GitHub
  Detecting DNS Spoofing, DNS Tunneling, DNS Exfiltration
  ☆36Sep 28, 2015Updated 10 years ago
• rybolov / dns-exfil

  View on GitHub
  A simple DNS exfiltration script
  ☆11Apr 17, 2023Updated 2 years ago
• Truvis / Splunk_TA_Truvis_Suricata5

  View on GitHub
  This TA takes Suricata5 data from your port mirrored Suricata server and makes it readable within Splunk. See Cheatsheets on how to setup…
  ☆15Sep 5, 2020Updated 5 years ago
• olafhartong / SA-Threat-Hunting

  View on GitHub
  Splunk app for Threat hunting
  ☆15Nov 15, 2018Updated 7 years ago
• frikky / WALKOFF

  View on GitHub
  A flexible, easy to use, automation framework allowing users to integrate their capabilities and devices to cut through the repetitive, t…
  ☆12Nov 23, 2022Updated 3 years ago
• inodee / threathunting-spl

  View on GitHub
  Splunk code (SPL) for serious threat hunters and detection engineers.
  ☆292Jan 15, 2024Updated 2 years ago
• Cyb3rWard0g / CyberWardogLab

  View on GitHub
  A few scripts I put together for testing purposes and to automate a few capabilities while doing IR. These scripts are also part of my bl…
  ☆56Jan 24, 2018Updated 8 years ago
• Wordpress hosting with auto-scaling - Free Trial • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• kidcrash22 / Sysmon-Threat-Intel

  View on GitHub
  ☆13Feb 6, 2018Updated 8 years ago
• securethelogs / Bluechecker

  View on GitHub
  Audit Powershell and search from known keywords in history #Blueteam
  ☆25Apr 22, 2020Updated 5 years ago
• brianwarehime / crt.sh-Maltego-Transforms

  View on GitHub
  Local Maltego Transforms for crt.sh
  ☆12Sep 8, 2017Updated 8 years ago
• mgreen27 / mgreen27.github.io

  View on GitHub
  Matt's DFIR blog
  ☆14Jul 28, 2025Updated 8 months ago
• cdefid / TheHiveIRPlaybook

  View on GitHub
  TheHiveIRPlaybook is a collection of TheHive case templates used for Incident Response
  ☆13Jul 13, 2020Updated 5 years ago
• zulu8 / Get-Baseline

  View on GitHub
  PowerShell Script for Agentless Incident Response
  ☆25Apr 5, 2018Updated 8 years ago
• ajackal / ir_scripts

  View on GitHub
  incident response scripts
  ☆18Mar 4, 2019Updated 7 years ago
• dstaulcu / TA-Sigma-Searches

  View on GitHub
  A Splunk app with saved reports derived from Sigma rules
  ☆73Apr 24, 2018Updated 7 years ago
• olafhartong / sysmon-modular

  View on GitHub
  A repository of sysmon configuration modules
  ☆3,016Aug 21, 2024Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• SpengeSec / peasant

  View on GitHub
  ☆13Nov 24, 2019Updated 6 years ago
• MHaggis / sysmon-dfir

  View on GitHub
  Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.
  ☆940Dec 12, 2023Updated 2 years ago
• mkorman90 / sysmon-config-bypass-finder

  View on GitHub
  Detect possible sysmon logging bypasses given a specific configuration
  ☆111Dec 26, 2018Updated 7 years ago
• JPCERTCC / SysmonSearch

  View on GitHub
  Investigate suspicious activity by visualizing Sysmon's event log
  ☆431Dec 22, 2023Updated 2 years ago
• mercedes-benz / ansible-for-splunk-cloud

  View on GitHub
  Ansible playbooks for configuring and managing Splunk Cloud deployments with the Admin Config Service (ACS) API
  ☆29Mar 26, 2026Updated 3 weeks ago
• rvrsh3ll / CanaryServer

  View on GitHub
  Fake SMB and SAMR data
  ☆11Oct 27, 2019Updated 6 years ago
• P4T12ICK / ypsilon

  View on GitHub
  Automated Use Case Testing
  ☆171May 1, 2018Updated 7 years ago
• paranoidninja / piBorg

  View on GitHub
  This is a Shell Script to setup NTLM hash sniffing using the Raspberry Pi Zero. This tool can be used during Red Team assessments by atta…
  ☆23Jun 7, 2017Updated 8 years ago
• NextronSystems / TA-aurora

  View on GitHub
  Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …
  ☆13Sep 27, 2022Updated 3 years ago
• Wordpress hosting with auto-scaling - Free Trial • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• egaus / malicious_url_analysis

  View on GitHub
  ☆18Jun 8, 2018Updated 7 years ago
• Azure / splunk-enterprise

  View on GitHub
  Guidance on deploying Splunk Enterprise on Azure with automated reference implementation
  ☆30Mar 13, 2023Updated 3 years ago
• B2dfir / Free-Incident-Response-Management-and-Documentation-Workbook

  View on GitHub
  A free incident response management and documentation workbook
  ☆25Nov 13, 2018Updated 7 years ago
• yeti-platform / pyeti

  View on GitHub
  Python bindings for Yeti's API
  ☆19Sep 12, 2023Updated 2 years ago
• MHaggis / hunt-detect-prevent

  View on GitHub
  Lists of sources and utilities utilized to hunt, detect and prevent evildoers.
  ☆169Dec 10, 2018Updated 7 years ago
• JamesHabben / EnCaseNetworkFramework

  View on GitHub
  This is a framework written in EnScript to utilize the network capabilities of EnCase. The purpose is to allow for someone to build a qui…
  ☆13Apr 22, 2015Updated 10 years ago
• olafhartong / detection-sources

  View on GitHub
  ☆53Mar 4, 2019Updated 7 years ago