Set of utilities for getting information about Windows Events
☆15Jun 5, 2018Updated 7 years ago
Alternatives and similar repositories for EventLogUtilities
Users that are interested in EventLogUtilities are comparing it to the libraries listed below
Sorting:
- Parser for Sdba memory pool tags☆21Jul 16, 2021Updated 4 years ago
- ☆18Feb 2, 2026Updated last month
- CryptnetURLCacheParser is a tool to parse CryptAPI cache files☆21Aug 3, 2024Updated last year
- A GC link parser for both linkfiles and jumplists.☆18Oct 28, 2016Updated 9 years ago
- Google Filestream Forensic Tool☆22Mar 10, 2022Updated 4 years ago
- A simple utility to generate real File and Active Directory activity in lab environments for the purposes of monitoring changes and detec…☆11Dec 4, 2018Updated 7 years ago
- Parses KAPE module files and downloads binaries referenced by BinaryURL☆18Oct 2, 2019Updated 6 years ago
- ☆24Mar 12, 2025Updated last year
- Get a list of installed software in a safe manner☆11Aug 7, 2017Updated 8 years ago
- Forensic Scanner☆41Nov 29, 2012Updated 13 years ago
- Short handy snippets from the @mwrlabs team☆20Jan 30, 2018Updated 8 years ago
- Source code for 'Foundations of Security' by Christoph Kern, Anita Kesavan, and Neil Daswani☆12Mar 29, 2017Updated 8 years ago
- ☆17Jul 26, 2018Updated 7 years ago
- Kernel based auditing for Mac, BSD and Linux. Leverages the Audit Subsystem, OpenBSM (eventually) and Apple's Endpoint Security Framework☆12Mar 6, 2020Updated 6 years ago
- ☆22Aug 28, 2023Updated 2 years ago
- Disk Image Mounting Script☆11Jan 22, 2026Updated 2 months ago
- osquery Foundation Charter, Legal, and Process Documents☆13Jun 10, 2022Updated 3 years ago
- Launchd daemon that reports major OSX modifications through growl☆16Feb 19, 2015Updated 11 years ago
- A collection of searches, interesting events and tables on Crowdstrike Splunk.☆30Mar 2, 2021Updated 5 years ago
- Tools to measure an app's App Sandbox usage☆26May 20, 2020Updated 5 years ago
- http://moaistory.blogspot.com/2018/10/winsearchdbanalyzer.html☆127Jul 20, 2024Updated last year
- Documentation and parsers for different anti-virus quarantine formats.☆42Dec 9, 2020Updated 5 years ago
- Rhaegal is a tool written in Python 3 used to scan Windows Event Logs for suspicious logs. Rhaegal uses custom rule format to detect sus…☆43Sep 21, 2023Updated 2 years ago
- WORK IN PROGRESS. RAT written in C++ using Win32 API☆19Sep 12, 2019Updated 6 years ago
- BUILDING AN APPLE OSX KERNEL MODULE WITH CMAKE – C/C++☆13Dec 27, 2017Updated 8 years ago
- PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.☆12Aug 26, 2024Updated last year
- Accompanying PowerShell Modules for DevSec Defense Presentation☆30Apr 15, 2018Updated 7 years ago
- Tool to decrypt encrypted strings in AgentTesla☆16Jan 24, 2022Updated 4 years ago
- WIP Emotet Control Flow Unflattening using miasm and radare2☆23Dec 27, 2022Updated 3 years ago
- macOS application that makes use of the EndpointSecurity framework☆19Aug 1, 2019Updated 6 years ago
- ☆10Aug 11, 2025Updated 7 months ago
- Here are some tools I developed to help analyze malware☆11Nov 8, 2023Updated 2 years ago
- Tool to rip system and user data from OSX and macOS☆16Dec 6, 2022Updated 3 years ago
- Volumetric Development☆11Mar 19, 2024Updated 2 years ago
- OverTheWire Wargames write-ups☆25Jun 13, 2017Updated 8 years ago
- An Android app that allows the RingMyPhone Pebble app to wake your Android phone up and start it ringing so you can find it.☆16Feb 13, 2022Updated 4 years ago
- Windows PowerShell module to help in the auditing of Active Directory environments.☆50Mar 22, 2017Updated 9 years ago
- A simple reflective dll example☆19Jan 8, 2017Updated 9 years ago
- my MSTICpy practice and custom tools repository☆11Apr 23, 2025Updated 10 months ago