Michel de CREVOISIER

Results 7 repositories owned by


                                            Michel de CREVOISIER

Microsoft-eventlog-mindmap

986

Stars

180

Forks

Watchers

Set of Mindmaps providing a detailed overview of the different #Microsoft auditing capacities for Windows, Exchange, Azure,...

mdecrevoisier

active-directory

azure

evtx

exchange

EVTX-to-MITRE-Attack

479

Stars

Forks

Watchers

Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.

mdecrevoisier

evtx

mitre-attack

redteam

siem

SIGMA-detection-rules

269

Stars

Forks

Watchers

Set of SIGMA rules (>320) mapped to MITRE ATT&CK tactic and techniques

mdecrevoisier

mitre-attack

powershell

sigma

threat-hunting

Windows-WEC-server_auto-deploy

Stars

Forks

Watchers

PowerShell scripts for fast Windows Event Collector configuration with Palantir toolset

mdecrevoisier

palantir

wec

wef

windows

Splunk-input-windows-baseline

Stars

Forks

Watchers

Provides an advanced input.conf file for Windows and 3rd party related software with more than 70 different event log mapped to the MITRE Att&CK

mdecrevoisier

Windows-auditing-baseline

Stars

Forks

Watchers

Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.

mdecrevoisier

Windows-authentication-brutforce-cheatsheet

Stars

Forks

Watchers

Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.

mdecrevoisier