reprise99/4688-sysmon external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

reprise99/4688-sysmon

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/reprise99/4688-sysmon)

Close

reprise99 / 4688-sysmonView on GitHubMore

• External links
• Readme badge

☆60Jun 24, 2023Updated 2 years ago

Alternatives and similar repositories for 4688-sysmon

Users that are interested in 4688-sysmon are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• elastic / sans-dfir-2022

  View on GitHub
  Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"
  ☆11Feb 6, 2025Updated last year
• Corissalea / KQL-and-Workbooks

  View on GitHub
  Sharing presentation slides and workbook templates that can be useful to others to learn more about Azure Active Directory!
  ☆21Aug 23, 2024Updated last year
• reprise99 / mddrguidance

  View on GitHub
  Links and guidance related to the return on mitigation report in the Microsoft Digital Defense Report
  ☆28Oct 10, 2023Updated 2 years ago
• xforcered / DayBird

  View on GitHub
  Extension functionality for the NightHawk operator client
  ☆26Oct 31, 2023Updated 2 years ago
• ConnorShride / box-ps

  View on GitHub
  Powershell sandboxing utility
  ☆20Mar 2, 2026Updated 3 weeks ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• fkie-cad / amides

  View on GitHub
  An Adaptive Misuse Detection System
  ☆47Nov 4, 2024Updated last year
• secureworks / primary-refresh-token-viewer

  View on GitHub
  ☆12Oct 24, 2022Updated 3 years ago
• ThreatLabz / iocs

  View on GitHub
  This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
  ☆78Jan 26, 2026Updated 2 months ago
• reprise99 / Azure-Sentinel

  View on GitHub
  Cloud-native SIEM for intelligent security analytics for your entire enterprise.
  ☆22Nov 22, 2021Updated 4 years ago
• Sam0x90 / CTI

  View on GitHub
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆83Apr 27, 2024Updated last year
• DARKSTUFF-LAB / netspionage

  View on GitHub
  ☆10Feb 15, 2023Updated 3 years ago
• Iansus / DllProxy

  View on GitHub
  ☆17Jun 28, 2023Updated 2 years ago
• cudeso / proof-value-cti

  View on GitHub
  Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.
  ☆53Oct 23, 2024Updated last year
• frack113 / sigma_redcanaryco

  View on GitHub
  Knowing which rule should trigger according to the redcannary test
  ☆11Nov 23, 2024Updated last year
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• jstnk9 / ETW-Almulahaza

  View on GitHub
  ETW-Almulahaza is a consumer python-based tool that help you monitor ETW events of the operating system
  ☆13Jun 24, 2022Updated 3 years ago
• jsa2 / EAST

  View on GitHub
  Extensible Azure Security Tool - Documentation
  ☆83Jun 1, 2023Updated 2 years ago
• mamun-sec / NetDahar

  View on GitHub
  A network logging tool that logs per process activities
  ☆32Jun 13, 2023Updated 2 years ago
• RAB301000001C3 / PCAPEXTRACT

  View on GitHub
  Packet Analysis on Steroids
  ☆13Oct 20, 2022Updated 3 years ago
• myexploit / LAB

  View on GitHub
  ☆33Dec 10, 2024Updated last year
• f-bader / EntraIDAuditLogToMicrosoftGraph

  View on GitHub
  A list of Entra ID (Azure AD) Audit event names and the corresponding Microsoft Graph Request Uri
  ☆37Sep 27, 2024Updated last year
• redhat-infosec / priority-intelligence-requirements-dev

  View on GitHub
  This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements
  ☆127Dec 5, 2023Updated 2 years ago
• th3r4ven / R4VENRansomware

  View on GitHub
  Ransonware simples, criptografa arquivos e volta ao normal com a chave fornecida
  ☆10Jan 28, 2021Updated 5 years ago
• Shadow0ps / CVE-2023-20198-Scanner

  View on GitHub
  This is a webshell fingerprinting scanner designed to identify implants on Cisco IOS XE WebUI's affected by CVE-2023-20198 and CVE-2023-2…
  ☆33Oct 24, 2023Updated 2 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• mgreen27 / DetectRaptor

  View on GitHub
  A repository to share publicly available Velociraptor detection content
  ☆196Mar 15, 2026Updated last week
• FriedrichWeinmann / PkiExtension

  View on GitHub
  ☆18Feb 2, 2026Updated last month
• keydet89 / Events-Ripper

  View on GitHub
  Project based on RegRipper, to extract add'l value/pivot points from TLN events file
  ☆89Feb 9, 2025Updated last year
• zeronetworks / ldapfw

  View on GitHub
  Protect your Domain Controllers by auditing and restricting LDAP requests
  ☆180May 29, 2025Updated 9 months ago
• NextronSystems / sysmon-config

  View on GitHub
  Sysmon configuration file template with default high-quality event tracing
  ☆580Jan 21, 2026Updated 2 months ago
• CD-R0M / YARA

  View on GitHub
  Hundred Days of Yara Challenge
  ☆12Jun 21, 2022Updated 3 years ago
• MHaggis / notes

  View on GitHub
  Full of public notes and Utilities
  ☆132Jan 6, 2026Updated 2 months ago
• AzureAD / Azure-AD-Incident-Response-PowerShell-Module

  View on GitHub
  The Azure Active Directory Incident Response PowerShell module provides a number of tools, developed by the Azure Active Directory Produc…
  ☆451Jun 16, 2023Updated 2 years ago
• jonny-jhnson / TelemetrySource

  View on GitHub
  ☆262May 9, 2024Updated last year
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• h0ffayyy / MicrosoftSentinelStuff

  View on GitHub
  Misc. content for Microsoft Sentinel
  ☆17Apr 12, 2024Updated last year
• SpecterOps / TierZeroTable

  View on GitHub
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆259Mar 2, 2026Updated 3 weeks ago
• mdecrevoisier / Windows-auditing-baseline

  View on GitHub
  Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.
  ☆64Feb 22, 2026Updated last month
• woanware / etw-event-dumper

  View on GitHub
  ☆33Feb 26, 2022Updated 4 years ago
• AI-redteam / sherl0ck

  View on GitHub
  Search an entire directory of .eml email files for a word or phrase... in over 100 languages.
  ☆12Feb 28, 2023Updated 3 years ago
• theaj42 / presentations

  View on GitHub
  ☆17Jan 21, 2026Updated 2 months ago
• FriedrichWeinmann / MiniGraph

  View on GitHub
  ☆41Mar 19, 2024Updated 2 years ago