Build a fast, free, and effective Threat Hunting/Incident Response Console with Windows Event Forwarding and PowerBI
-
Updated
Dec 11, 2017 - PowerShell
Build a fast, free, and effective Threat Hunting/Incident Response Console with Windows Event Forwarding and PowerBI
An Incident Response tool that visualizes historic process execution evidence (based on Event ID 4688 - Process Creation Event) in a tree view.
Runtime-configurable and scriptable log processor and forwarder
Flume source support windows event log
Elasticsearch-based log search and wiki application
Query and report user logons relations from MS Windows Security Events
Simple Powershell scripts to collect all Windows Event Logs from a host and parse them into one CSV timeline.
Logger library is a nuget package that simplifies application execution logging to a specified target location.
A PS forensics tool for Scraping, Filtering and Exporting Windows Event Logs
Complex Maintenance of Workstation
Syslog collector and analyzer.
Logging to Windows Eventlog
A useful tool to check for time modifications
Automatically export Windows event logs to CSV
Python 3-based multithreaded Windows Event monitoring program
Capture all events across all logs produced during the running of a particular exploit/script. Search and filter events
SAP Lumira Data Access Extension sample code: Windows Event Log.
Windows Event Log logger for the node.js Winston module.
Add a description, image, and links to the windows-eventlog topic page so that developers can more easily learn about it.
To associate your repository with the windows-eventlog topic, visit your repo's landing page and select "manage topics."