APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity
-
Updated
Sep 19, 2024 - Python
APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity
Query and report user logons relations from MS Windows Security Events
An Incident Response tool that visualizes historic process execution evidence (based on Event ID 4688 - Process Creation Event) in a tree view.
A Python script that parses CPER-formatted raw data contained in error event log provided by WHEA-Logger
Python 3-based multithreaded Windows Event monitoring program
Add a description, image, and links to the windows-eventlog topic page so that developers can more easily learn about it.
To associate your repository with the windows-eventlog topic, visit your repo's landing page and select "manage topics."