Automatically generated Sysmon parser for Azure Sentinel
☆18Jan 6, 2026Updated 2 months ago
Alternatives and similar repositories for sysmon-parser
Users that are interested in sysmon-parser are comparing it to the libraries listed below
Sorting:
- Detection rules and threat hunting queries in Defender XDR and Azure Sentinel☆16Mar 13, 2026Updated last week
- ☆18Oct 20, 2022Updated 3 years ago
- Beginners Guide to Hunting for Threats☆18Apr 26, 2025Updated 10 months ago
- Azure Sentinel Template parser☆16Nov 2, 2020Updated 5 years ago
- A mirror image of my detection rules☆47Updated this week
- An AD CS toolkit for AD Admins, Defensive Security Professionals, and Filthy Red Teamers☆41Updated this week
- Threat Hunt Investigation Methodology and Procedure☆15Jul 11, 2022Updated 3 years ago
- Execute Shellcode And Other Goodies From MMC☆14Jun 17, 2015Updated 10 years ago
- Check you Sentinel environment using Pester infrastructure tests☆31Sep 26, 2023Updated 2 years ago
- Azure-Sentinel-BYOML☆12Nov 8, 2019Updated 6 years ago
- Installs And Executes Shellcode☆12Jul 26, 2015Updated 10 years ago
- Azure OpenAI Playbook created for Microsoft Sentinel☆13May 2, 2024Updated last year
- Notes and utilities for reverse engineering Agilent PCIe Protocol Analyzers and their host software.☆14Oct 9, 2025Updated 5 months ago
- Recovered samples, extracted Wasm/binaries, decoded payloads & analysis scripts from the Coruna iOS/macOS exploit kit (b27.icu). 28 JS mo…☆35Mar 9, 2026Updated last week
- ☆16Jul 21, 2018Updated 7 years ago
- Sentinel Recon Tools Workbook☆14Aug 24, 2022Updated 3 years ago
- CIFv3 Ubuntu 16.04 Docker Container (Bearded Avenger)☆12Apr 18, 2018Updated 7 years ago
- Bulk turn on Analytic rules in Azure Sentinel☆19Oct 7, 2021Updated 4 years ago
- Miscellaneous notebooks to use with Sentinel Hub☆20Aug 28, 2023Updated 2 years ago
- ☆15Feb 20, 2026Updated last month
- ☆11Mar 16, 2023Updated 3 years ago
- Leghorn code for PKI abuse☆34Jun 17, 2021Updated 4 years ago
- Built a mini HoneyNet in Azure and ingest log sources from various resources into a Log Analytics workspace☆24Jul 19, 2023Updated 2 years ago
- A PoC exploit for CVE-2023-51467 - Apache OFBiz Authentication Bypass☆12Dec 31, 2023Updated 2 years ago
- ☆39Updated this week
- Integration tools for TheHive and Azure Sentinel☆13Sep 23, 2020Updated 5 years ago
- Terraform module to send CloudWatch logs to a syslog server. Compatible with papertrail, logstash, and datadog.☆12Mar 18, 2021Updated 5 years ago
- A collection of things I've created or found that I think is useful for Azure Sentinel.☆18Jan 28, 2026Updated last month
- ☆14Feb 22, 2021Updated 5 years ago
- putting all together: customer environment, some threats, azure security services, Microsoft 365 Defender services, Azure monitor service…☆17Apr 11, 2022Updated 3 years ago
- Detect and trap IP scanners☆11Mar 26, 2019Updated 6 years ago
- WolvCtf-2023-Challenges-Public☆12Apr 13, 2023Updated 2 years ago
- Miscellaneous Azure Sentinel files that don't fall into other categories.☆13Aug 23, 2021Updated 4 years ago
- massively concurrent web scraping☆24Apr 19, 2009Updated 16 years ago
- KQL Sentinel and Defender Detection and Hunting Queries.☆16Feb 24, 2026Updated 3 weeks ago
- Extension that allows native HLS playback in Firefox browser☆13Sep 5, 2016Updated 9 years ago
- Achieving a Reverse Shell Exploit for Apache ActiveMQ (CVE_2023-46604)☆17Aug 2, 2024Updated last year
- PowerShell commands to export the Azure Sentinel Rule Templates to a CSV and to create the Rules from selected entries in the CSV file☆17Oct 31, 2024Updated last year
- Manage your detectors and identify atypical data in OpenSearch Dashboards☆40Mar 13, 2026Updated last week