windows-eventlog

There are 3 repositories under windows-eventlog topic.

ahmedkhlief / APT-Hunter
APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity
threat-hunting purpleteam python3 windows-eventlog apt-attacks incident-response forensic-analysis windows-event-logs
Language:Python 1145
snakefoot / snaketail-net
Tail utility for monitoring text log files and Windows EventLog
tail windows-eventlog c-sharp log-viewer log-monitor
Language:C# 386
THIBER-ORG / userline
Query and report user logons relations from MS Windows Security Events
dfir forensics python windows-eventlog evtx-analisys plaso neo4j gephi csv elasticsearch logon-relations docker dockerfile graph login blackhat
Language:Python 243
jepayneMSFT / WEFFLES
Build a fast, free, and effective Threat Hunting/Incident Response Console with Windows Event Forwarding and PowerBI
incident-response threat-hunting windows-eventlog
Language:PowerShell 200
IllusiveNetworks-Labs / HistoricProcessTree
An Incident Response tool that visualizes historic process execution evidence (based on Event ID 4688 - Process Creation Event) in a tree view.
incident-response dfir windows-eventlog treeview process-tree
Language:Python 59
piesecurity / WindowsEventsToCSVTimeline
Simple Powershell scripts to collect all Windows Event Logs from a host and parse them into one CSV timeline.
powershell-script timeline windows-eventlog forensic-analysis csv-export eventlog windows parsing
Language:PowerShell 31
S3mprGumb1 / whodunnit
A PS forensics tool for Scraping, Filtering and Exporting Windows Event Logs
powershell windows forensics windows-eventlog windows-event-logs
Language:PowerShell 16
HemulGM / CMW
Complex Maintenance of Workstation
cwm windows-api windows delphi api system registry autorun taskmanager tasklist taskscheduler cleaner firewall regedit network ports smart hdd-health windows-eventlog os-info
Language:Pascal 12
ruochao / jwinlog
Access windows event log via JNA
windows-eventlog eventlog jna
Language:Java 7
crazyeights225 / WinEventLogExplorer
Capture all events across all logs produced during the running of a particular exploit/script. Search and filter events
powershell-script sysmon windows-eventlog windows-event-log blue-team detection-engineering windows
Language:PowerShell 5
markkurossi / lgrep
Syslog collector and analyzer.
syslog-server windows-eventlog datalog go golang
Language:Go 4
SAP-archive / lumira-extension-da-windowseventlog
SAP Lumira Data Access Extension sample code: Windows Event Log.
sample sap-lumira windows-eventlog
Language:C# 4
RandomRhythm / wEventLogSearch
Search Windows event log and output results to a text file
windows-eventlog windows-event-log windows-event-logs export-fields csv
Language:C# 3
tomstryhn / EventFromCustomView
PowerShell Module for using Microsoft Windows Event Viewer Custom Views for Event Log Filtering in PowerShell
custom-view custom-views customview customviews event-viewer eventviewer microsoft-windows microsoftwindows powershell powershell-module windows-event-log windows-eventlog
Language:PowerShell 3
viperior / windows-event-log-auto-export
Automatically export Windows event logs to CSV
windows-eventlog error-monitoring error-reporting error-analysis powershell-script qlik-sense
Language:PowerShell 3
4k95m / cper_parser.py
A Python script that parses CPER-formatted raw data contained in error event log provided by WHEA-Logger
cper python whea-logger whea common-platform-error-record windows-hardware-error-architecture event-log eventlog windows-event-log windows-event-logs windows-eventlog
Language:Python 2
fluggo / investigator
Elasticsearch-based log search and wiki application
elasticsearch wiki security-tools ldap active-directory netflow syslog windows-eventlog log-search logging blue-team
Language:JavaScript 2
jrdnbradford / Windows-Event-Monitor
Python 3-based multithreaded Windows Event monitoring program
python python3 windows windows-eventlog windows-event-log windows-event-logs pywin32 security security-tools monitoring monitoring-tool application-monitoring event-monitoring event-metrics
Language:Python 2
ruochao / flume-source-winlog
Flume source support windows event log
flume flume-ng flume-source-plugin windows-eventlog eventlog
Language:Java 2
alykoshin / winston-winlog3
Windows Event Log logger for the node.js Winston module.
winston winston-winlog winston-winlog2 windows nodejs npm logging windows-eventlog
Language:JavaScript 1
fluggo / node-log-forwarder
Runtime-configurable and scriptable log processor and forwarder
syslog fluentd logstash elasticsearch irc slack notifications logging-alerts windows-eventlog log-parsing log-forwarder log-formatter
Language:JavaScript 1
Paladin7100 / TOEventLogging
Logging to Windows Eventlog
eventlog applicationlog windows-eventlog logging log
Language:PowerShell 1
ItaliannCheater / Timesmasher
A useful tool to check for time modifications
evtx-analisys windows-eventlog csharp
Language:C# 0
4na7i1 / wevtutilCS
csharp evtx windows-eventlog
Language:C#
aplteam / WindowsEventLog
Deal with the Windows event log
apl windows-eventlog library dyalog-library apltree dyalog-apl
Language:APL
maqsoftware / Logger
Logger library is a nuget package that simplifies application execution logging to a specified target location.
windows-eventlog event-log azure-table-storage asp-net-web-api
Language:C#
SoulSec / AnalystNotes
Some thing for analyst
windows-eventlog event-logs incident-response security