ecosyste.ms

Repos

An open API service providing repository metadata for many open source software ecosystems.

GitHub topics: threat-hunting-via-sysmon

Repositories

DamonMohammadbagher/ETWProcessMon2

ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.

Language: C# - Size: 35 MB - Last synced at: about 1 month ago - Pushed at: about 1 year ago - Stars: 300 - Forks: 69

DamonMohammadbagher/BEV4

BasicEventViewer4 (BEV v4.0), this code will useful for All Blue/Purple Teams , RealTime Monitoring Sysmon Events , Mitre Attack Detections via yaml files

Language: C# - Size: 4.8 MB - Last synced at: 9 days ago - Pushed at: almost 2 years ago - Stars: 18 - Forks: 5

DamonMohammadbagher/BEV3

BasicEventViewer (BEV v3.0), this code will useful for All Blue Teamers.

Language: C# - Size: 1.94 MB - Last synced at: about 1 month ago - Pushed at: almost 2 years ago - Stars: 2 - Forks: 2

anil-yelken/tehditavciligi Fork of kaleakademi/tehditavciligi

Tehdit Avcılığı ( Threat Hunting ) Yazılarımız

Size: 27.3 KB - Last synced at: about 2 years ago - Pushed at: about 3 years ago - Stars: 1 - Forks: 1

Related Keywords

threat-hunting-via-sysmon 4 blueteam 2 blueteaming 2 eventviewer 2 realtime-monitoring 2 cobaltstrike-detection 1 event-monitoring 1 mitre-attack 1 real-time 1 threat-hunting-via-eventlogs 1 security 1 windowseventviewer 1 edr 1 eventlogs 1 log-analysis 1 purple-team 1 soc 1 soc-analysts 1 sysmon 1 threat-hunting 1 threat-modeling 1 traffic-analysis 1 detection-etw-events 1 etw 1 imageloads 1 malicious-traffic-detection 1 memory-scanner 1 memory-scanner-by-etw-events 1 memory-scanning 1 meterpreter-detection 1 payload-detection 1 processmonitoring 1 remote-thread-injection 1 tcpip-monitoring 1 technique-detection 1 thread-monitor 1 threat-hunting-via-etw 1 virtualmemallocation-detection 1 atomic-red-team 1 blue-team-tool 1