evtx
Here are 39 public repositories matching this topic...
Set of Mindmaps providing a detailed overview of the different #Microsoft auditing capacities for Windows, Exchange, Azure,...
-
Updated
May 1, 2024
This is a PySimpleGUI-based Python software tool for processing and visualising selected Windows Event Security.evtx log files that meet a condition in Event ID 4688.
-
Updated
May 1, 2024 - Python
An Autopsy data source ingest module for detection of IOCs in EVTX for Windows and Auditd for Linux based on SIGMA Rules.
-
Updated
Apr 29, 2024 - Python
Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.
-
Updated
Mar 8, 2024
A simplified EVTX file parser wrapping 0xrawsec's golang-evtx module
-
Updated
Feb 27, 2024 - Go
A simple System monitor(Sysmon) EVTX inspector; search, visualize, and track Sysmon events
-
Updated
Feb 16, 2024 - Go
Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here at https://github.com/ceramicskate0/SWELF/releases/latest.
-
Updated
Jun 20, 2023 - C#
-
Updated
May 26, 2023 - C#
ThreatSeeker: Threat Hunting via Windows Event Logs
-
Updated
May 16, 2023 - Python
Windows Log to Logstash ingesting service
-
Updated
Feb 24, 2023 - C#
Windows Events Attack Samples
-
Updated
Jan 24, 2023 - HTML
Improve this page
Add a description, image, and links to the evtx topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the evtx topic, visit your repo's landing page and select "manage topics."