A resource for leveraging Windows and Sysmon event codes in threat hunting and incident response.
☆26Sep 29, 2024Updated last year
Alternatives and similar repositories for Windows-Sysmon-Threat-Hunting-Guide
Users that are interested in Windows-Sysmon-Threat-Hunting-Guide are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Personal scripts☆15Sep 11, 2024Updated last year
- RuleVis is a powerful analysis tool that transforms your Wazuh ruleset into a dynamic, interactive force-directed graph. It helps you vis…☆27Nov 12, 2025Updated 7 months ago
- Malware analysis and Reverse Engineering Workshops from Invoke RE☆15Jun 30, 2024Updated 2 years ago
- The Frida Scripts Fetcher & Exploiter tool helps you search and use those scripts to exploit based on the provided search keyword.☆18Aug 5, 2023Updated 2 years ago
- Case, knowledge management and digital investigation platform☆33May 12, 2026Updated last month
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A python 3 script for extracting messages from Viber Desktop's sqlite message database into a text file.☆11Dec 24, 2019Updated 6 years ago
- Made VRChat Avatar creation and testing easier☆10Apr 24, 2026Updated 2 months ago
- AppLocker Policy Generator☆26Aug 25, 2025Updated 10 months ago
- Collection of ProjectDiscovery wallpapers☆35Oct 31, 2023Updated 2 years ago
- Tiny and fast port scanner (Sliver edition)☆30Feb 17, 2026Updated 4 months ago
- AI-Driven Breach and Attack Simulation Tool (Initial Proof of Concept for AI Pentest Copilot)☆27Jan 6, 2025Updated last year
- Tool to bruteforce Windows LDAP, Kerberos, RDP, SSH, FTP, HTTP basic and digest authentication☆28Dec 31, 2024Updated last year
- Fastly scans open ports on large networks and bruteforce login mechanism of found services☆12Aug 24, 2019Updated 6 years ago
- The first open source runtime windows batch and command line deobfuscator☆48Jun 23, 2026Updated last week
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- ☆12Feb 20, 2022Updated 4 years ago
- TIBER-Cases is a project created to give cases of The Hive platform for Threat Intelligence Analysts mainly. All the cases are mapped to …☆27Jul 13, 2022Updated 3 years ago
- sl0ppy-PrivescTaskCreator.ps1☆41Oct 8, 2025Updated 8 months ago
- Open-source LLM Prompt-Injection and Jailbreaking Playground☆37Jul 19, 2025Updated 11 months ago
- Tools and Scripts used in CRTP☆12Apr 27, 2020Updated 6 years ago
- Turn a standard Raspbian Lite install into a tor-ified wifi access point☆14Aug 3, 2017Updated 8 years ago
- Collection of BOFs for Cobalt Strike☆32Mar 28, 2023Updated 3 years ago
- ☆13Mar 14, 2015Updated 11 years ago
- List of Sanctions and Most wanted☆29Jun 9, 2017Updated 9 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- OWASP Foundation Web Respository☆12Jun 22, 2026Updated last week
- ☆23Feb 24, 2026Updated 4 months ago
- Modular framework for automating triaging, malware analysis, and analyst workflows☆44May 2, 2025Updated last year
- Python library powering opsi☆21Jun 25, 2026Updated last week
- Pound Load Balancer used in RELIANOID ADC for HTTP and HTTPS userspace management. It includes some features developed by the RELIANOID T…☆16Jan 2, 2025Updated last year
- AutoIt Analysis Library: Parser & Emulator For Malware Researchers☆22Apr 27, 2019Updated 7 years ago
- havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets☆43Aug 6, 2024Updated last year
- Набор утилит, облегчающих эксплуатацию кластера 1С Предприятие 8☆29May 11, 2026Updated last month
- MITRE ATT&CK visualizations☆11Jan 28, 2022Updated 4 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- ☆40Aug 25, 2018Updated 7 years ago
- CVE-2025-62215 is an Elevation of Privilege (EoP) vulnerability in the Windows Kernel, disclosed in November 2025 and confirmed to be act…☆32Nov 14, 2025Updated 7 months ago
- Tools used by CSIRT and especially in the scope of CNW☆18Feb 26, 2026Updated 4 months ago
- Extract the SAM and SYSTEM hives using the Volume Shadow Copy (VSS) API. With exfiltration and XOR obfuscation options. Implemented in C#…☆368Feb 2, 2026Updated 5 months ago
- Self-mutating macOS implant☆138Apr 18, 2026Updated 2 months ago
- Python Scripts to Interact with VirusTotal, Malwares.com and Google Safe Browsing.☆11Dec 1, 2016Updated 9 years ago
- A Game platform to spread awareness among school and university students about various cyber attacks.☆15Oct 21, 2018Updated 7 years ago