blackhillsinfosec / EventLogging Star 486 Code Issues Pull requests Automation scripts to deploy Windows Event Forwarding, Sysmon, and custom audit policies in an Active Directory environment. elasticsearch splunk powershell active-directory threat-hunting windows-event-logs windows-event-collector Updated Nov 21, 2024 PowerShell
S3mprGumb1 / whodunnit Star 16 Code Issues Pull requests A PS forensics tool for Scraping, Filtering and Exporting Windows Event Logs windows powershell forensics windows-eventlog windows-event-logs Updated Sep 4, 2019 PowerShell
joelvaneenwyk / deep-blue-pwsh Star 0 Code Issues Pull requests PowerShell Module for Threat Hunting via Windows Event Logs by Eric Conrad. log-analysis powershell sysmon threat-hunting siem windows-event-logs Updated Dec 27, 2024 PowerShell
kfallahi / WinAuthLogParser Star 0 Code Issues Pull requests Parses and Analyse Authentication on Windows Event Log incident-response dfir cybersecurity threat-hunting redteam windows-event-logs Updated Jan 15, 2024 PowerShell