A resource for leveraging Windows and Sysmon event codes in threat hunting and incident response.
☆26Sep 29, 2024Updated last year
Alternatives and similar repositories for Windows-Sysmon-Threat-Hunting-Guide
Users that are interested in Windows-Sysmon-Threat-Hunting-Guide are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Personal scripts☆15Sep 11, 2024Updated last year
- Threat Modeling with ATT&CK defines how to integreate MITRE ATT&CK® into your organization’s existing threat modeling methodology.☆14May 28, 2025Updated last year
- Patched Bash 3.2.24 to log all actions to syslog☆13Dec 16, 2017Updated 8 years ago
- Open source HIDS tailored for Microsoft Windows and Active Directory☆31Feb 13, 2026Updated 4 months ago
- The Frida Scripts Fetcher & Exploiter tool helps you search and use those scripts to exploit based on the provided search keyword.☆18Aug 5, 2023Updated 2 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- ☆34Mar 4, 2019Updated 7 years ago
- Case, knowledge management and digital investigation platform☆33May 12, 2026Updated last month
- Windows Snapshot Fuzzer (SNAFUzz)☆51Dec 17, 2025Updated 5 months ago
- ☆24Updated this week
- A python 3 script for extracting messages from Viber Desktop's sqlite message database into a text file.☆11Dec 24, 2019Updated 6 years ago
- Made VRChat Avatar creation and testing easier☆10Apr 24, 2026Updated last month
- POC☆43Jul 21, 2025Updated 10 months ago
- The exploit for Panda AV LPE☆37May 22, 2019Updated 7 years ago
- AppLocker Policy Generator☆26Aug 25, 2025Updated 9 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Malware vulnerability intel tool for third-party attackers☆122Oct 24, 2024Updated last year
- Collection of ProjectDiscovery wallpapers☆35Oct 31, 2023Updated 2 years ago
- Bring runZero Exposure Management into BloodHound☆48Apr 16, 2026Updated last month
- Tiny and fast port scanner (Sliver edition)☆30Feb 17, 2026Updated 3 months ago
- AI-Driven Breach and Attack Simulation Tool (Initial Proof of Concept for AI Pentest Copilot)☆27Jan 6, 2025Updated last year
- VulnReach builds on standard SCA output by adding reachability context - proving through static analysis, taint tracking, and live runtim…☆21Jun 6, 2026Updated last week
- Tool to bruteforce Windows LDAP, Kerberos, RDP, SSH, FTP, HTTP basic and digest authentication☆28Dec 31, 2024Updated last year
- Detection for CVE-2025-61675, CVE-2025-61678 & CVE-2025-66039☆47Dec 15, 2025Updated 5 months ago
- En este repositorio podrás encontrar los ejercicios del canal @aprendePython3 de Telegram así como sus soluciones.☆10May 20, 2020Updated 6 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- ☆13Dec 28, 2019Updated 6 years ago
- The first open source runtime windows batch and command line deobfuscator☆43Aug 20, 2025Updated 9 months ago
- ☆23Jan 29, 2026Updated 4 months ago
- ☆12Feb 20, 2022Updated 4 years ago
- TIBER-Cases is a project created to give cases of The Hive platform for Threat Intelligence Analysts mainly. All the cases are mapped to …☆27Jul 13, 2022Updated 3 years ago
- sl0ppy-PrivescTaskCreator.ps1☆41Oct 8, 2025Updated 8 months ago
- A powerful Python library and CLI tool for parsing, analyzing, and manipulating YARA rules through Abstract Syntax Tree (AST) representat…☆53Jun 6, 2026Updated last week
- Open-source LLM Prompt-Injection and Jailbreaking Playground☆36Jul 19, 2025Updated 10 months ago
- Tools and Scripts used in CRTP☆12Apr 27, 2020Updated 6 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- This will be the repo for the BTHb.☆30May 9, 2026Updated last month
- Collection of BOFs for Cobalt Strike☆32Mar 28, 2023Updated 3 years ago
- ☆13Mar 14, 2015Updated 11 years ago
- List of Sanctions and Most wanted☆29Jun 9, 2017Updated 9 years ago
- Modular framework for automating triaging, malware analysis, and analyst workflows☆44May 2, 2025Updated last year
- Pound Load Balancer used in RELIANOID ADC for HTTP and HTTPS userspace management. It includes some features developed by the RELIANOID T…☆16Jan 2, 2025Updated last year
- A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…☆260Jun 4, 2026Updated last week