☆61Jun 24, 2023Updated 3 years ago
Alternatives and similar repositories for 4688-sysmon
Users that are interested in 4688-sysmon are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Feb 6, 2025Updated last year
- Links and guidance related to the return on mitigation report in the Microsoft Digital Defense Report☆29Oct 10, 2023Updated 2 years ago
- Sharing presentation slides and workbook templates that can be useful to others to learn more about Azure Active Directory!☆21Aug 23, 2024Updated last year
- Extension functionality for the NightHawk operator client☆27Oct 31, 2023Updated 2 years ago
- Powershell sandboxing utility☆19Updated this week
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- An Adaptive Misuse Detection System☆48Nov 4, 2024Updated last year
- ☆12Oct 24, 2022Updated 3 years ago
- This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports☆79Jan 26, 2026Updated 5 months ago
- Cloud-native SIEM for intelligent security analytics for your entire enterprise.☆22Nov 22, 2021Updated 4 years ago
- Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on☆81Apr 27, 2024Updated 2 years ago
- ☆10Feb 15, 2023Updated 3 years ago
- ☆19Jun 28, 2023Updated 3 years ago
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆54Oct 23, 2024Updated last year
- Knowing which rule should trigger according to the redcannary test☆11Nov 23, 2024Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- ETW-Almulahaza is a consumer python-based tool that help you monitor ETW events of the operating system☆13Jun 24, 2022Updated 4 years ago
- Extensible Azure Security Tool - Documentation☆83Jun 1, 2023Updated 3 years ago
- A network logging tool that logs per process activities☆32Jun 13, 2023Updated 3 years ago
- Packet Analysis on Steroids☆14Oct 20, 2022Updated 3 years ago
- ☆33Dec 10, 2024Updated last year
- A list of Entra ID (Azure AD) Audit event names and the corresponding Microsoft Graph Request Uri☆42Sep 27, 2024Updated last year
- Ransonware simples, criptografa arquivos e volta ao normal com a chave fornecida☆10Jan 28, 2021Updated 5 years ago
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆128Dec 5, 2023Updated 2 years ago
- This is a webshell fingerprinting scanner designed to identify implants on Cisco IOS XE WebUI's affected by CVE-2023-20198 and CVE-2023-2…☆33Oct 24, 2023Updated 2 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- A repository to share publicly available Velociraptor detection content☆204Updated this week
- ☆18Apr 24, 2026Updated 2 months ago
- Protect your Domain Controllers by auditing and restricting LDAP requests☆191May 29, 2025Updated last year
- Project based on RegRipper, to extract add'l value/pivot points from TLN events file☆89Feb 9, 2025Updated last year
- Sysmon configuration file template with default high-quality event tracing☆598Jan 21, 2026Updated 5 months ago
- Hundred Days of Yara Challenge☆12Jun 21, 2022Updated 4 years ago
- Full of public notes and Utilities☆134Jan 6, 2026Updated 5 months ago
- The Azure Active Directory Incident Response PowerShell module provides a number of tools, developed by the Azure Active Directory Produc…☆455Jun 16, 2023Updated 3 years ago
- ☆264May 9, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Misc. content for Microsoft Sentinel☆17Apr 12, 2024Updated 2 years ago
- Table of AD and Azure assets and whether they belong to Tier Zero☆267Mar 2, 2026Updated 4 months ago
- Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.☆69Feb 22, 2026Updated 4 months ago
- Search an entire directory of .eml email files for a word or phrase... in over 100 languages.☆12Feb 28, 2023Updated 3 years ago
- ☆33Feb 26, 2022Updated 4 years ago
- ☆17Updated this week
- ☆41Mar 19, 2024Updated 2 years ago