Results for "evtx"

Claude Code Claude Desktop GitHub Copilot Cursor Windsurf Cline Zed JetBrains

📄SKILL.md 🤖CLAUDE.md ⚡Claude Commands 📐.cursorrules 📐Cursor Rules 🕹️AGENTS.md 🧬codex.md 🏄.windsurfrules 🔧.clinerules 🧑‍✈️Copilot Instructions

All Development Operations Data Product Marketing Customer Design Sales

94 skills found · Page 1 of 4

sbousseaden / EVTX ATTACK SAMPLES

2.5k

Windows Events Attack Samples

universal

datasetdetection-engineeringdfir+5

Updated 1h ago

mdecrevoisier / Microsoft Eventlog Mindmap

1.1k

Set of Mindmaps providing a detailed overview of the different #Microsoft auditing capacities for Windows, Exchange, Azure,...

universal

active-directoryazureevtx+4

Updated 11d ago

omerbenamram / Evtx

893

A Fast (and safe) parser for the Windows XML Event Log (EVTX) format

universal

Updated 4d ago

wagga40 / Zircolite

795

A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs

universal

auditddetectiondfir+12

Updated 2d ago

williballenthin / Python Evtx

768

Pure Python parser for Windows Event Log files (.evtx)

universal

event-logevtxforensics

Updated 11d ago

mdecrevoisier / EVTX To MITRE Attack

617

Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.

universal

evtxmitre-attackredteam+2

Updated 4d ago

nasbench / EVTX ETW Resources

421

Event Tracing For Windows (ETW) Resources

universal

detectionetwevent-tracing-for-windows+5

Updated 11d ago

EricZimmerman / Evtx

350

C# based evtx parser with lots of extras

universal

eventeventlogevtx+1

Updated 1d ago

3gstudent / Eventlogedit Evtx Evolution

272

Remove individual lines from Windows XML Event Log (EVTX) files

universal

Updated 1mo ago

jurelou / Epagneul

242

Graph Visualization for windows event logs

universal

blueteamdfir-automationevtx+6

Updated 2mo ago

libyal / Libevtx

230

Library and tools to access the Windows XML Event Log (EVTX) format

universal

Updated 26d ago

r3nzsec / Irflow Timeline

224

DFIR Timeline Analysis for macOS — SQLite-backed viewer for CSV, TSV, XLSX, EVTX, Plaso, $MFT, and $J files with built-in process inspection, lateral movement tracking, persistence detection, and VirusTotal enrichment.

universal

dfirdigitalforensicsforensicstriage+8

Updated 29m ago

williballenthin / EVTXtract

210

EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.

universal

Updated 10d ago

0xrawsec / Golang Evtx

171

No description available

universal

Updated 26d ago

NVISOsecurity / Evtx Hunter

158

evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.

universal

csirtevtxincident-response+3

Updated 2mo ago

fox-it / Danderspritz Evtx

151

Parse evtx files and detect use of the DanderSpritz eventlogedit module

universal

danderspritzeventlogeditevtx+1

Updated 2mo ago

ine-labs / ThreatSeeker

123

ThreatSeeker: Threat Hunting via Windows Event Logs

universal

evtxlog-analysissysmon+4

Updated 4d ago

dgunter / Evtxtoelk

119

A lightweight tool to load Windows Event Log evtx files into Elasticsearch.

universal

Updated 7mo ago

Koifman / LUMEN

114

Your Browser-based EVTX Companion

universal

Updated 18d ago

Velocidex / Evtx

108

Golang Parser for Microsoft Event Logs

universal

Updated 18h ago