Projects in Awesome Lists tagged with threat-hunting-via-sysmon

A curated list of projects in awesome lists tagged with threat-hunting-via-sysmon .

• Sort

  • Recently synced
  • Stars

https://github.com/damonmohammadbagher/etwprocessmon2

ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.

blueteam cobaltstrike-detection detection-etw-events etw imageloads malicious-traffic-detection memory-scanner memory-scanner-by-etw-events memory-scanning meterpreter-detection payload-detection processmonitoring realtime-monitoring remote-thread-injection tcpip-monitoring technique-detection thread-monitor threat-hunting-via-etw threat-hunting-via-sysmon virtualmemallocation-detection

Last synced: 06 Apr 2025

https://github.com/damonmohammadbagher/bev4

BasicEventViewer4 (BEV v4.0), this code will useful for All Blue/Purple Teams , RealTime Monitoring Sysmon Events , Mitre Attack Detections via yaml files

atomic-red-team blue-team-tool blueteaming event-monitoring eventviewer mitre-attack real-time realtime-monitoring threat-hunting-via-eventlogs threat-hunting-via-sysmon

Last synced: 07 May 2025

https://github.com/damonmohammadbagher/bev3

BasicEventViewer (BEV v3.0), this code will useful for All Blue Teamers.

blueteam blueteaming eventviewer security threat-hunting-via-sysmon windowseventviewer

Last synced: 03 Jan 2025