simeononsecurity / Automate-Sysmon
Automate Sysmon Deployment and Configuration
☆17Updated 7 months ago
Alternatives and similar repositories for Automate-Sysmon:
Users that are interested in Automate-Sysmon are comparing it to the libraries listed below
- A collection of PowerShell modules for interacting with the Shodan API. Includes modules for returning information about the API, client …☆24Updated 7 months ago
- Scans the filesystem for directories that are user-writeable☆11Updated 3 years ago
- Some portable tools, some YARA, some Python, and a little bit of love. Not all of these tools can be used in incident response. Use PEs…☆34Updated last year
- Set up scripts for various OS'es☆24Updated 7 months ago
- This repository contains a collection of PowerShell tools that can be utilized to protect and defend an environment based on the recommen…☆51Updated 8 months ago
- A windows hardening script that makes it difficult to compromise a Windows device. Only for use during Blue-Team Competitions.☆27Updated 7 months ago
- Automate Windows Defender STIG to 100% Compliance☆20Updated 7 months ago
- This repository lists all active Microsoft domains | no URLs and no sub-domains | for the purpose of Whitelisting in various systems and …☆28Updated 9 months ago
- A quick and easy PowerShell script to collect a packet trace with option to convert .etl to .pcap.☆40Updated 2 years ago
- Specific guidance and configuration scripts based on Microsoft-recommended security configuration baselines for Windows.☆13Updated 4 years ago
- Ansible Playbooks for SimeonOnSecurity's STIG Scripts☆14Updated 7 months ago
- AppLocker hardening policies☆25Updated 6 years ago
- A PowerShell module for incident response and threat hunting.☆33Updated 10 months ago
- Threat Simulator for Enterprise Networks☆14Updated 2 years ago
- Take advantage of some more advanced Windows Defender settings.☆65Updated 3 months ago
- PowerShell scripts/GUI tools for the enterprise to harden Windows Defender Firewall via group policy (GPO). These can be used to enforce …☆65Updated 3 years ago
- Ultimate Applocker Hardening Configuration Script.☆27Updated 7 months ago
- Azure AD Incident Response☆25Updated 3 years ago
- A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…☆96Updated 7 months ago
- ☆32Updated 2 years ago
- Harden Windows with Windows Defender Application Control (WDAC)☆38Updated 7 months ago
- Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser☆32Updated last year
- Active Directory Group Policy analyzer☆14Updated 5 years ago
- Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…☆39Updated 3 years ago
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆36Updated last year
- gundog - guided hunting in Microsoft Defender☆52Updated 3 years ago
- Build a domain with three quick PowerShell scripts!☆29Updated 4 years ago
- Custom ADMX template focused on hardening Windows 10 & Windows 11 systems☆80Updated 3 months ago
- An analytical framework for network traffic and behavioral analytics☆22Updated 2 years ago
- This repo contains information on how to auto deploy Sysmon via GPO and Task Scheduler☆12Updated 3 years ago