evtx
Here are 42 public repositories matching this topic...
Language:All
Sort:Most stars
Windows Events Attack Samples
- Updated
Jan 24, 2023 - HTML
Set of Mindmaps providing a detailed overview of the different #Microsoft auditing capacities for Windows, Exchange, Azure,...
- Updated
Sep 4, 2024
Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.
- Updated
Jan 15, 2025
Graph Visualization for windows event logs
- Updated
Jan 15, 2025 - Python
evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.
- Updated
Nov 30, 2021 - Python
Parse evtx files and detect use of the DanderSpritz eventlogedit module
- Updated
Dec 15, 2017 - Python
ThreatSeeker: Threat Hunting via Windows Event Logs
- Updated
May 16, 2023 - Python
A library for fast parse & import of Windows Eventlogs into Elasticsearch.
- Updated
Jun 28, 2024 - Python
Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here athttps://github.com/ceramicskate0/SWELF/releases/latest.
- Updated
Jun 20, 2023 - C#
Logpresso Mini and community contents for incident response
- Updated
Oct 21, 2021
EvtXHunt is an Autopsy plugin that is able to analyze Windows EVTX logs against a library of SIGMA rules.
- Updated
Nov 7, 2021 - Python
This is a PySimpleGUI-based Python software tool for processing and visualising selected Windows Event Security.evtx log files that meet a condition in Event ID 4688.
- Updated
Jun 15, 2024 - Python
A simple System monitor(Sysmon) EVTX inspector; search, visualize, and track Sysmon events
- Updated
Jun 11, 2024 - Go
Improve this page
Add a description, image, and links to theevtx topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with theevtx topic, visit your repo's landing page and select "manage topics."