oneoffdallas / check_ioc
Check_ioc is a script to check for various, selectable indicators of compromise on Windows systems via PowerShell and Event Logs. It was primarily written to be run on a schedule from a monitoring engine such as Nagios, however, it may also be run from a command-line (for incident response). For more information on the script and the logic behin…
☆77Updated 7 years ago
Alternatives and similar repositories for check_ioc:
Users that are interested in check_ioc are comparing it to the libraries listed below
- Sysmon configuration☆66Updated 6 years ago
- ☆36Updated 8 years ago
- PowerShell Module for automating Tenable Nessus Vulnerability Scanner.☆88Updated 2 years ago
- This module is used to report phishing URLs to their WHOIS/RDAP abuse contact information.☆43Updated 7 years ago
- Office365 Log Analysis Framework☆82Updated 5 years ago
- Maps process creation logged by Sysmon uses Google Org Chart API