A resource for leveraging Windows and Sysmon event codes in threat hunting and incident response.
☆26Sep 29, 2024Updated last year
Alternatives and similar repositories for Windows-Sysmon-Threat-Hunting-Guide
Users that are interested in Windows-Sysmon-Threat-Hunting-Guide are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Personal scripts☆15Sep 11, 2024Updated last year
- Patched Bash 3.2.24 to log all actions to syslog☆13Dec 16, 2017Updated 8 years ago
- Open source HIDS tailored for Microsoft Windows and Active Directory☆31Feb 13, 2026Updated 3 months ago
- ☆34Mar 4, 2019Updated 7 years ago
- Case, knowledge management and digital investigation platform☆33May 12, 2026Updated last week
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Sh3ller is a lightweight C2 framework in its simplest form.☆33Sep 5, 2025Updated 8 months ago
- Made VRChat Avatar creation and testing easier☆10Apr 24, 2026Updated last month
- POC☆43Jul 21, 2025Updated 10 months ago
- AppLocker Policy Generator☆26Aug 25, 2025Updated 8 months ago
- Malware vulnerability intel tool for third-party attackers☆122Oct 24, 2024Updated last year
- Collection of ProjectDiscovery wallpapers☆35Oct 31, 2023Updated 2 years ago
- Tiny and fast port scanner (Sliver edition)☆30Feb 17, 2026Updated 3 months ago
- AI-Driven Breach and Attack Simulation Tool (Initial Proof of Concept for AI Pentest Copilot)☆27Jan 6, 2025Updated last year
- VulnReach builds on standard SCA output by adding reachability context - proving through static analysis, taint tracking, and live runtim…☆20Updated this week
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Tool to bruteforce Windows LDAP, Kerberos, RDP, SSH, FTP, HTTP basic and digest authentication☆28Dec 31, 2024Updated last year
- ☆24Mar 4, 2025Updated last year
- A small stuff of telegram bot for pentest and information gathering.☆11Oct 3, 2020Updated 5 years ago
- 安全好文整理,松鼠症患者福音☆14Nov 30, 2023Updated 2 years ago
- This will be the repo for the BTHb.☆29May 9, 2026Updated 2 weeks ago
- ☆13Dec 28, 2019Updated 6 years ago
- The first open source runtime windows batch and command line deobfuscator☆42Aug 20, 2025Updated 9 months ago
- ☆23Jan 29, 2026Updated 3 months ago
- ☆12Feb 20, 2022Updated 4 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- TIBER-Cases is a project created to give cases of The Hive platform for Threat Intelligence Analysts mainly. All the cases are mapped to …☆27Jul 13, 2022Updated 3 years ago
- A powerful Python library and CLI tool for parsing, analyzing, and manipulating YARA rules through Abstract Syntax Tree (AST) representat…☆51Updated this week
- Open-source LLM Prompt-Injection and Jailbreaking Playground☆35Jul 19, 2025Updated 10 months ago
- Tools and Scripts used in CRTP☆12Apr 27, 2020Updated 6 years ago
- Turn a standard Raspbian Lite install into a tor-ified wifi access point☆14Aug 3, 2017Updated 8 years ago
- Collection of BOFs for Cobalt Strike☆32Mar 28, 2023Updated 3 years ago
- ☆13Mar 14, 2015Updated 11 years ago
- List of Sanctions and Most wanted☆29Jun 9, 2017Updated 8 years ago
- ☆22Feb 24, 2026Updated 3 months ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Python library powering opsi☆20May 7, 2026Updated 2 weeks ago
- Pound Load Balancer used in RELIANOID ADC for HTTP and HTTPS userspace management. It includes some features developed by the RELIANOID T…☆16Jan 2, 2025Updated last year
- havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets☆42Aug 6, 2024Updated last year
- A suite of Volatility 3 plugins for memory forensics of Docker containers☆18Jan 10, 2024Updated 2 years ago
- Taller Cybercamp 2017. Seguridad ofensiva y defensiva con Machine Learning☆11Nov 30, 2017Updated 8 years ago
- A curated awesome list of lists of interview questions. Feel free to contribute!☆23Jul 24, 2024Updated last year
- CVE-2025-62215 is an Elevation of Privilege (EoP) vulnerability in the Windows Kernel, disclosed in November 2025 and confirmed to be act…☆32Nov 14, 2025Updated 6 months ago