Here are
17 public repositories
matching this topic...
Main Sigma Rule Repository
-
Updated
May 29, 2024
-
Python
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
-
Updated
Feb 15, 2024
-
Python
A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs
-
Updated
May 10, 2024
-
Python
戎?之眼是一?window上的基于att&ck模型的威??控工具.有效??常?的未知威??已知威?.防守方的利?
-
Updated
Oct 25, 2023
-
Python
Endpoint detection & Malware analysis software
-
Updated
Dec 20, 2019
-
Python
Consolidation of various resources related to Microsoft Sysmon & sample data/log
-
Updated
Sep 20, 2021
-
Python
ThreatSeeker: Threat Hunting via Windows Event Logs
-
Updated
May 16, 2023
-
Python
System Processes Correlation Engine
-
Updated
Jan 2, 2024
-
Python
A log-based Threat Hunting tool
-
Updated
Dec 27, 2022
-
Python
Extract logs based off events from sysmon. Comes as a package, cli and ui.
-
Updated
May 22, 2020
-
Python
This is actually a follow-up to "Mapping-Sysmonlogs-to-ATTACK". After you obtain the "syslog.csv" through program in that repository, you can convert the log into a graph structure with relations through this program
-
Updated
Apr 25, 2023
-
Python
Utility to convert SysInternals' Sysmon binary configuration to XML
-
Updated
Dec 3, 2023
-
Python
Utilities for working with and testing Sysmon configs against Windows Event Logs
-
Updated
Jul 21, 2023
-
Python
-
Updated
Apr 25, 2024
-
Python
Splunk scripted input to push and install sysmon, with the sysmon config forked by securiyshrimp, from Taylor Swift, to ignore splunk executables.
-
Updated
Jan 14, 2019
-
Python
Monitors system statistics and saves it in a csv-file format.
-
Updated
Feb 21, 2019
-
Python
Captures Sysmon events and converts the output into a pandas DataFrames / CSV
-
Updated
May 18, 2023
-
Python
Improve this page
Add a description, image, and links to the
sysmon
topic page so that developers can more easily learn about it.
Curate this topic
Add this topic to your repo
To associate your repository with the
sysmon
topic, visit your repo's landing page and select "manage topics."
Learn more
You can’t perform that action at this time.