Windows Event Log Killer
Logstash 是一个实时的管道式开源日志收集引擎。 Logstash可以动态的将不同来源的数据进行归一并且将格式化的数据存储到你选择的位置。 对你的所有做数据清洗和大众化处理,以便做数据分析和可视化。
iOS Logs, Events, And Plist Parser
Automation scripts to deploy Windows Event Forwarding, Sysmon, and custom audit policies in an Active Directory environment.
Cobalt Strike插件 - RDP日志取证&清除
Investigate malicious Windows logon by visualizing and analyzing Windows event log
翻译 - 通过可视化和分析Windows事件日志来调查恶意Windows登录
Retrieves the definitions of Windows Event Log messages embedded in Windows binaries and provides them in discoverable formats. #nsacyber
Evade sysmon and windows event logging
翻译 - 逃避sysmon和Windows事件记录
This is a repo for fetching Applocker event log by parsing the win-event log
Investigate suspicious activity by visualizing Sysmon's event log
Pure Python parser for Windows Event Log files (.evtx)
Persistence by writing/reading shellcode from Event Log
A graph dashboard and event log for Stellaris.
dumps chromes webrtc event log as json
Remove individual lines from Windows XML Event Log (EVTX) files
Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsacyber
Use subProcessTag Value From TEB to identify Event Log Threads
Pure Python parser for classic Windows Event Log files (.evt)
A Fast (and safe) parser for the Windows XML Event Log (EVTX) format
Python API, Log, Event Server and Memory wrapper for ZoneMinder
A Salesforce connected web app to access and download Event Log Files
Set of Mindmaps providing a detailed overview of the different #Microsoft auditing capacities for Windows, Exchange, Azure,...
翻译 - 一组思维导图提供了不同 #Windows 审计能力和事件日志文件的详细概述。
EventStoreDB, the event-native database. Designed for Event Sourcing, Event-Driven, and Microservices architectures
翻译 - 针对事件源进行了优化的流数据库