#

sysmon

Here are 8 public repositories matching this topic...

n0dec / MalwLess

Test Blue Team detections without running any attack.

powershell dfir sysmon siem hacktoberfest blueteam redteam mitre-attack

Updated May 2, 2024
C#

matterpreter / Shhmon

Neutering Sysmon via driver unload

csharp sysmon evasion

Updated Oct 13, 2022
C#

LaresLLC / SysmonConfigPusher

Pushes Sysmon Configs

windows sysmon threat-hunting siem

Updated Jun 11, 2021
C#

Kara-4search / PEB-PPIDspoofing_Csharp

Command line & PPID spoofing

avatar csharp sysmon pentest bypass redteam edr ppid

Updated Apr 15, 2023
C#

ceramicskate0 / SWELF

Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here at https://github.com/ceramicskate0/SWELF/releases/latest.

Updated Jun 20, 2023
C#

Kara-4search / WindowsEventLogsBypass_Csharp

Bypass windows eventlogs & Sysmon

avatar csharp sysmon pentest sleep bypass bypass-uac redteam eventlogs administrator-privilege

Updated Aug 24, 2021
C#

vastlimits / uberAgent-ESA-Sysmon-Converter

Converts Sysmon rules to uberAgent ESA Threat Detection rules

sysmon sysmon-config uberagent uaql

Updated Aug 21, 2024
C#

1Dimitri / WixsharpSysmon

Wixsharp based installed MSI for Sysmon and rules from the SwiftOnSecurity project

sysmon msi sysinternals security-tools sysmon-config wixsharp

Updated May 26, 2021
C#

Improve this page

Add a description, image, and links to the sysmon topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the sysmon topic, visit your repo's landing page and select "manage topics."