Skip to content
/ S3 Public

Open Source Windows Security Event Log Correlation and Analysis Tool

License

MIT license
1 star 3 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

slacker007/S3

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

25 Commits
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
splunksexysix.py
splunksexysix.py
 
 

Repository files navigation

S3 {Splunk Sexy Six}

Open Source Windows Security Event Log Correlation and Analysis Tool

sudo docker run --detach --publish=7474:7474
--publish=7687:7687 --publish=7473:7473
--volume=$HOME/neo4j/data:/data
--volume=$HOME/neo4j/logs:/logs neo4j:3.1
Open Browser: Navigate to http://localhost:7474/browser
log in with neo4j as username and neo4j as pw
set your custom password with database \

git clone http://www.github.com/williballenthin/python-evtx
cd python-evtx/scripts
python evtx_dump Security.evtx > Security.xml \

git clone http://www.github.com/slacker007/s3
cd s3
python splunksexysix.py --input path/to/your/Security.xml \

About

Open Source Windows Security Event Log Correlation and Analysis Tool

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

2 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages