sysmon topics

Shhmon

217

Stars

36

Forks

Watchers

Neutering Sysmon via driver unload

matterpreter

csharp

evasion

sysmon

57

Stars

17

Forks

Watchers

Sysmon and wazuh integration with Sigma sysmon rules [updated]

sametsazak

ossec

security

security-tools

sigma

DetectionLab

4.5k

Stars

972

Forks

Watchers

Automate the creation of a lab environment complete with security tooling and logging best practices

clong

ansible

detection

detectionlab

dfir

sigma

8.2k

Stars

2.2k

Forks

344

Watchers

Main Sigma Rule Repository

SigmaHQ

elasticsearch

ids

logging

monitoring

ThreatHunter-Playbook

3.9k

Stars

796

Forks

Watchers

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

OTRF

dfir

hunter

hunting

hunting-campaigns

WindowsSpyBlocker

4.5k

Stars

357

Forks

Watchers

Block spying and tracking on Windows

crazy-max

blocker

dnscrypt

firewall

hostsfile

sentinel-attack

1.0k

Stars

207

Forks

Watchers

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

netevert

azure

azure-sentinel

blue-team

cybersecurity

sysmon-config

4.6k

Stars

1.7k

Forks

Watchers

Sysmon configuration file template with default high-quality event tracing

SwiftOnSecurity

logging

monitoring

netsec

sysinternals

sysmon-modular

2.5k

Stars

570

Forks

Watchers

A repository of sysmon configuration modules

olafhartong

dfir

mitre-attack

modular

security-tools

SysmonTools

1.5k

Stars

205

Forks

Watchers

Utilities for Sysmon

nshalabi

logging

monitoring

netsec

sysinternals