Sysmon
Showing 9 of 9 projects
A generic and open signature format for describing log event detections, shareable across SIEM systems.
A generic and open signature format for describing log event detections, shareable across SIEM systems.
A high-quality, commented Sysmon configuration template for Windows system monitoring and incident investigation.
A community-driven open-source project that structures threat hunting workflows using MITRE ATT&CK, Jupyter notebooks, and AI-augmented planning.
A modular repository of Sysmon configuration modules for customizable endpoint detection and logging.
A PowerShell module for threat hunting and detecting malicious activity via Windows Event Logs.
A standalone Python tool for applying SIGMA detection rules to EVTX, Auditd, Sysmon for Linux, and other log formats.
A curated collection of Event ID resources for digital forensics and incident response professionals.
A security analysis tool that visualizes Sysmon event logs using Elasticsearch and Kibana to investigate suspicious activity.
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.