#时序数据库#插件驱动的代理程序,用于收集系统、服务统计数据
APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspi...
翻译 - APT-Hunter是Windows事件日志的威胁搜寻工具,紫色团队的心态使该工具能够检测Windows事件日志中隐藏的APT移动,以减少发现可疑活动的时间
Tail utility for monitoring text log files and Windows EventLog
Query and report user logons relations from MS Windows Security Events
Build a fast, free, and effective Threat Hunting/Incident Response Console with Windows Event Forwarding and PowerBI
An Incident Response tool that visualizes historic process execution evidence (based on Event ID 4688 - Process Creation Event) in a tree view.
Simple Powershell scripts to collect all Windows Event Logs from a host and parse them into one CSV timeline.
A PS forensics tool for Scraping, Filtering and Exporting Windows Event Logs
Complex Maintenance of Workstation
PowerShell Module for using Microsoft Windows Event Viewer Custom Views for Event Log Filtering in PowerShell
Automatically export Windows event logs to CSV
Capture all events across all logs produced during the running of a particular exploit/script. Search and filter events
SAP Lumira Data Access Extension sample code: Windows Event Log.
Search Windows event log and output results to a text file
A Python script that parses CPER-formatted raw data contained in error event log provided by WHEA-Logger
Elasticsearch-based log search and wiki application
Python 3-based multithreaded Windows Event monitoring program