olafhartong/TA-Sysmon-deploy external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

olafhartong/TA-Sysmon-deploy

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/olafhartong/TA-Sysmon-deploy)

Close

olafhartong / TA-Sysmon-deployView on GitHubMore

• External links
• Readme badge

Deploy and maintain Symon through the Splunk Deployment Sever

☆32Jul 30, 2020Updated 5 years ago

Alternatives and similar repositories for TA-Sysmon-deploy

Users that are interested in TA-Sysmon-deploy are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• mattifestation / PSSysmonTools

  View on GitHub
  Sysmon Tools for PowerShell
  ☆233Aug 17, 2018Updated 7 years ago
• corelight / Dashboards-Splunk-DNS-Hunting-Beaconing

  View on GitHub
  DNS Dashboard for hunting and identifying beaconing
  ☆16Jul 29, 2020Updated 5 years ago
• MHaggis / app_splunk_sysmon_hunter

  View on GitHub
  Splunk App to assist Sysmon Threat Hunting
  ☆38Mar 7, 2017Updated 9 years ago
• MarkBaggett / domain_stats2

  View on GitHub
  ☆14Feb 8, 2020Updated 6 years ago
• mutedmouse / ta-volatility

  View on GitHub
  Technical add-on to ingest json formatted volatility memory analysis plugin outputs
  ☆13May 21, 2018Updated 7 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• MHaggis / sysmon-splunk-app

  View on GitHub
  Sysmon Splunk App
  ☆47Aug 21, 2018Updated 7 years ago
• securethelogs / Powershell

  View on GitHub
  ☆14Nov 12, 2021Updated 4 years ago
• rkovar / dns_detection

  View on GitHub
  Detecting DNS Spoofing, DNS Tunneling, DNS Exfiltration
  ☆36Sep 28, 2015Updated 10 years ago
• Truvis / Splunk_TA_Truvis_Suricata5

  View on GitHub
  This TA takes Suricata5 data from your port mirrored Suricata server and makes it readable within Splunk. See Cheatsheets on how to setup…
  ☆15Sep 5, 2020Updated 5 years ago
• olafhartong / SA-Threat-Hunting

  View on GitHub
  Splunk app for Threat hunting
  ☆15Nov 15, 2018Updated 7 years ago
• frikky / WALKOFF

  View on GitHub
  A flexible, easy to use, automation framework allowing users to integrate their capabilities and devices to cut through the repetitive, t…
  ☆12Nov 23, 2022Updated 3 years ago
• inodee / threathunting-spl

  View on GitHub
  Splunk code (SPL) for serious threat hunters and detection engineers.
  ☆291Jan 15, 2024Updated 2 years ago
• Cyb3rWard0g / CyberWardogLab

  View on GitHub
  A few scripts I put together for testing purposes and to automate a few capabilities while doing IR. These scripts are also part of my bl…
  ☆56Jan 24, 2018Updated 8 years ago
• kidcrash22 / Sysmon-Threat-Intel

  View on GitHub
  ☆13Feb 6, 2018Updated 8 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• cdefid / TheHiveIRPlaybook

  View on GitHub
  TheHiveIRPlaybook is a collection of TheHive case templates used for Incident Response
  ☆13Jul 13, 2020Updated 5 years ago
• brianwarehime / crt.sh-Maltego-Transforms

  View on GitHub
  Local Maltego Transforms for crt.sh
  ☆12Sep 8, 2017Updated 8 years ago
• securethelogs / Bluechecker

  View on GitHub
  Audit Powershell and search from known keywords in history #Blueteam
  ☆25Apr 22, 2020Updated 5 years ago
• mgreen27 / mgreen27.github.io

  View on GitHub
  Matt's DFIR blog
  ☆14Jul 28, 2025Updated 7 months ago
• zulu8 / Get-Baseline

  View on GitHub
  PowerShell Script for Agentless Incident Response
  ☆25Apr 5, 2018Updated 7 years ago
• ajackal / ir_scripts

  View on GitHub
  incident response scripts
  ☆18Mar 4, 2019Updated 7 years ago
• dstaulcu / TA-Sigma-Searches

  View on GitHub
  A Splunk app with saved reports derived from Sigma rules
  ☆73Apr 24, 2018Updated 7 years ago
• olafhartong / sysmon-modular

  View on GitHub
  A repository of sysmon configuration modules
  ☆2,996Aug 21, 2024Updated last year
• SpengeSec / peasant

  View on GitHub
  ☆13Nov 24, 2019Updated 6 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• mkorman90 / sysmon-config-bypass-finder

  View on GitHub
  Detect possible sysmon logging bypasses given a specific configuration
  ☆111Dec 26, 2018Updated 7 years ago
• NextronSystems / TA-aurora

  View on GitHub
  Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …
  ☆13Sep 27, 2022Updated 3 years ago
• JPCERTCC / SysmonSearch

  View on GitHub
  Investigate suspicious activity by visualizing Sysmon's event log
  ☆430Dec 22, 2023Updated 2 years ago
• mercedes-benz / ansible-for-splunk-cloud

  View on GitHub
  Ansible playbooks for configuring and managing Splunk Cloud deployments with the Admin Config Service (ACS) API
  ☆29Updated this week
• rvrsh3ll / CanaryServer

  View on GitHub
  Fake SMB and SAMR data
  ☆11Oct 27, 2019Updated 6 years ago
• P4T12ICK / ypsilon

  View on GitHub
  Automated Use Case Testing
  ☆171May 1, 2018Updated 7 years ago
• paranoidninja / piBorg

  View on GitHub
  This is a Shell Script to setup NTLM hash sniffing using the Raspberry Pi Zero. This tool can be used during Red Team assessments by atta…
  ☆23Jun 7, 2017Updated 8 years ago
• egaus / malicious_url_analysis

  View on GitHub
  ☆18Jun 8, 2018Updated 7 years ago
• Azure / splunk-enterprise

  View on GitHub
  Guidance on deploying Splunk Enterprise on Azure with automated reference implementation
  ☆30Mar 13, 2023Updated 3 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• yeti-platform / pyeti

  View on GitHub
  Python bindings for Yeti's API
  ☆19Sep 12, 2023Updated 2 years ago
• B2dfir / Free-Incident-Response-Management-and-Documentation-Workbook

  View on GitHub
  A free incident response management and documentation workbook
  ☆25Nov 13, 2018Updated 7 years ago
• MHaggis / hunt-detect-prevent

  View on GitHub
  Lists of sources and utilities utilized to hunt, detect and prevent evildoers.
  ☆168Dec 10, 2018Updated 7 years ago
• JamesHabben / EnCaseNetworkFramework

  View on GitHub
  This is a framework written in EnScript to utilize the network capabilities of EnCase. The purpose is to allow for someone to build a qui…
  ☆13Apr 22, 2015Updated 10 years ago
• CERT-Bund / misp-warninglists-analyzer

  View on GitHub
  Checks observables/ioc in TheHive/Cortex against the MISP warningslists
  ☆14Dec 27, 2017Updated 8 years ago
• MISP / misp-graph

  View on GitHub
  A tool to convert MISP XML files (events and attributes) into graphs
  ☆20May 13, 2017Updated 8 years ago
• vysecurity / ATT-CK_Analysis

  View on GitHub
  Repository for my ATT&CK analysis research.
  ☆70May 16, 2019Updated 6 years ago