Generic Signature Format for SIEM Systems

Sysmon configuration file template with default high-quality event tracing

A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.

🛡 Block spying and tracking on Windows

A repository of sysmon configuration modules

Utilities for Sysmon

Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

Advanced Sysmon configuration, Installer & Auto Updater with high-quality event tracing

Investigate suspicious activity by visualizing Sysmon's event log

Test Blue Team detections without running any attack.

Open Source Endpoint Detection System for Windows

Endpoint detection & Malware analysis software

Neutering Sysmon via driver unload

Windows Event Forwarding subscriptions, configuration files and scripts that assist with implementing ACSC's protect publication, Technical Guidance for Windows Event Logging.

Signature Engine for Windows Event Logs

Sysmon Splunk App

Splunk App to assist Sysmon Threat Hunting

A Ruleset to enhance detection capabilities of Ossec using Sysmon

Consolidation of various resources related to Microsoft Sysmon & sample data/log

Deploy and maintain Symon through the Splunk Deployment Sever

incident response scripts

Qt based replacement for gnome system monitor

Sysmon and wazuh integration with Sigma sysmon rules [updated]

A PowerShell script to prevent Sysmon from writing its events

Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here at https://github.com/ceramicskate0/SWELF/releases/latest.

Burnham Forensics ELK Deployment Files

This repository is for integrating HELK capabilities into Security Onion instances. This will be an evolving extension to both products and as such this not contributed directly to either the HELK or SecurityOnion. Please both use at your own risk and enjoy.