Alternatives and similar repositories for activity-timeline

Users that are interested in activity-timeline are comparing it to the libraries listed below

• THEVER1TAS / sysmon-config
  Sysmon configuration file templates with advanced event tracing and blocking
  ☆41Updated 3 weeks ago
• PwC-IR / MIA-MailItemsAccessed-
  Tool to extract Sessions, MessageID(s) and find the emails belonging to MessageID(s). This script utilizes the MailItemsAccessed features…
  ☆41Updated 5 years ago
• ddbnl / office365-audit-log-collector
  Collect / retrieve Office365, AzureAD and DLP audit logs and output to PRTG, Azure Log Analytics Workspace, SQL, Graylog, Fluentd, and/or…
  ☆118Updated last year
• invictus-ir / Blue-team-app-Office-365-and-Azure
  ☆73Updated last year
• veeral-patel / true-positive
  Collaborative, web-based case management for incident response
  ☆24Updated 2 years ago
• SophosRapidResponse / OSQuery
  ☆88Updated 11 months ago
• renisac / O365-Management-and-Log-Scripts
  Security-Focused O365 Management and Log Scripts
  ☆62Updated 3 years ago
• fbprogmbh / Hardening-Audit-Tool-AuditTAP
  FBPro Audit Test Automation Package allows you to create compliance reports for your systems. The resulting HTML-reports provide a transp…
  ☆162Updated last week
• freeload101 / SCRIPTS
  ☆170Updated last week
• EvotecIT / VirusTotalAnalyzer
  PowerShell module that intearacts with the VirusTotal service using a VirusTotal API (free)
  ☆77Updated 3 weeks ago
• cyberphor / Soap
  A PowerShell module for incident response and threat hunting.
  ☆38Updated last year
• SigmaHQ / pySigma-backend-insightidr
  ☆15Updated 5 months ago
• Blumira / Logmira
  Logmira by Blumira has been created by Amanda Berlin as a helpful download of Microsoft Windows Domain Group Policy Object settings.
  ☆62Updated last year
• EdwardsCP / powershell-scripts
  ☆25Updated 4 years ago
• olafhartong / WDACme
  A WDAC configuration repository with the sole intention of enriching MDE
  ☆30Updated 7 months ago
• WiredPulse / PowerShell
  A series of scripts
  ☆101Updated 4 years ago
• inodee / spl-to-kql
  The idea is simply to save some quick notes that will make it easier for Splunk users to leverage KQL (Kusto), especially giving projects…
  ☆44Updated 5 years ago
• ydkhatri / OneDrive
  OneDrive log .ODL reader
  ☆157Updated last year
• keyboardcrunch / SentinelOne-Query-Navigator
  Web based S1 query navigator for one-click threat hunting
  ☆25Updated 5 years ago
• freeload101 / CrowdStrike_RTR_Powershell_Scripts
  ☆83Updated last year
• CybercentreCanada / howler
  Elevate your Security Operations Center's efficiency with Howler, the cutting-edge alert triage platform tailored for today's SOC demands…
  ☆43Updated this week
• siriussecurity / dettectinator
  Dettectinator - The Python library to your DeTT&CT YAML files.
  ☆119Updated 3 weeks ago
• high101bro / PoSh-EasyWin
  PowerShell - Endpoint Analysis Solution Your Windows Intranet Needs
  ☆48Updated last year
• Sophos-Community / XDR_Queries
  This hosts all queries created on the LD&R Forum
  ☆13Updated 11 months ago
• BeanBagKing / 1029_crack.py
  Crack base64(sha256(username)) hash from Microsoft Event ID 1029
  ☆22Updated 2 years ago
• AustralianCyberSecurityCentre / windows_event_logging
  Windows Event Forwarding subscriptions, configuration files and scripts that assist with implementing ACSC's protect publication, Technic…
  ☆227Updated last year
• Truvis / Sentinel
  ☆30Updated 9 months ago
• humio / security_monitoring
  ☆43Updated 2 years ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆79Updated this week
• nov3mb3r / trident
  A PowerShell incident response script for quick triage
  ☆81Updated 3 years ago