sumeshi / evtx2esLinks
A library for fast parse & import of Windows Eventlogs into Elasticsearch.
☆85Updated last week
Alternatives and similar repositories for evtx2es
Users that are interested in evtx2es are comparing it to the libraries listed below
Sorting:
- List of PowerShell commands and commandlets that should be in your Powershel watchlist☆37Updated 3 years ago
- My conference presentations☆66Updated last year
- A collection of useful PowerShell tools to collect, organize, and visualize Sysmon event data☆39Updated 5 years ago
- A repo to document API functions mapped to security events across diverse platforms☆75Updated 5 years ago
- Random hunting ordiented yara rules☆97Updated 2 years ago
- Detect possible sysmon logging bypasses given a specific configuration☆111Updated 6 years ago
- A repository that maps API calls to Sysmon Event ID's.☆122Updated 2 years ago
- Useful access control entries (ACE) on system access control list (SACL) of securable objects to find potential adversarial activity☆92Updated 3 years ago
- attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage☆113Updated 2 years ago
- Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…