{"id":15979173,"url":"https://github.com/zelon88/event_saver","last_synced_at":"2025-06-13T14:10:53.345Z","repository":{"id":72821839,"uuid":"238767731","full_name":"zelon88/Event_Saver","owner":"zelon88","description":"A short and dirty script to preserve Event logs in potentially compromised environments.","archived":false,"fork":false,"pushed_at":"2020-02-06T19:39:36.000Z","size":16,"stargazers_count":2,"open_issues_count":0,"forks_count":0,"subscribers_count":2,"default_branch":"master","last_synced_at":"2025-02-25T17:45:21.996Z","etag":null,"topics":["automation","event-listener","event-monitoring","opsec","security-tools","sysadmin-tool"],"latest_commit_sha":null,"homepage":"https://www.HonestRepair.net","language":"VBScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/zelon88.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2020-02-06T19:31:21.000Z","updated_at":"2023-02-06T08:50:30.000Z","dependencies_parsed_at":null,"dependency_job_id":"3f989e91-800f-440f-9661-5c781f453643","html_url":"https://github.com/zelon88/Event_Saver","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/zelon88/Event_Saver","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zelon88%2FEvent_Saver","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zelon88%2FEvent_Saver/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zelon88%2FEvent_Saver/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zelon88%2FEvent_Saver/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/zelon88","download_url":"https://codeload.github.com/zelon88/Event_Saver/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/zelon88%2FEvent_Saver/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":259659667,"owners_count":22891672,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["automation","event-listener","event-monitoring","opsec","security-tools","sysadmin-tool"],"created_at":"2024-10-07T23:41:28.989Z","updated_at":"2025-06-13T14:10:53.337Z","avatar_url":"https://github.com/zelon88.png","language":"VBScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"NAME: Infrastructure_Heartbeat.vbs\r\n \r\n\r\nTYPE: Visual Basic Script\r\n\r\n\r\nPRIMARY LANGUAGE: \r\nVBS\r\n\r\n\r\nAUTHOR: Justin Grimes\r\n\r\n\r\nORIGINAL VERSION DATE: 5/31/2019\r\n\r\n\r\nCURRENT VERSION DATE: 2/6/2020\r\n\r\n\r\nVERSION: v1.0\r\n\r\n\r\nDESCRIPTION: \r\nA short and dirty script to preserve Event logs in potentially compromised environments.\r\n\r\n\r\nPURPOSE: \r\nTo monitor the event logs and preserve specified ones for administrator review.\r\n\r\n\r\nINSTALLATION INSTRUCTIONS: \r\n1. Copy the entire \"es.vbs\" file to a well-hidden location on the local machine (the machine to be monitored).\r\n\r\n2. Add a scheduled task to run the script on a designated schedule. Every 10m is adequate.\r\n\r\n3. Check the logs frequently to see if they have captured the desired events.\r\n\r\n4. Modify the configuration variables in the beginning of the ex.vbs file to adjust log location and preserved events.\r\n\r\nNOTES: \r\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fzelon88%2Fevent_saver","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fzelon88%2Fevent_saver","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fzelon88%2Fevent_saver/lists"}