siem
Here are 22 public repositories matching this topic...
Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into Forensic Artifact Events for UEBA, Detect Exploitation events with wide CVE Coverage, and Risk Scoring of CVE, UEBA, Forensic, and MITRE ATT&CK Events.
-
Updated
Nov 5, 2023 - PowerShell
Encyclopedia for Executables
-
Updated
Nov 9, 2021 - PowerShell
A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework
-
Updated
Nov 3, 2020 - PowerShell
Microsoft Sentinel SOC Operations
-
Updated
Oct 29, 2023 - PowerShell
Purpleteam scripts simulation & Detection - trigger events for SOC detections
-
Updated
Apr 24, 2024 - PowerShell
Tools to create a Native Windows Audit Collection Platform. Active Directory example provided
-
Updated
Nov 5, 2019 - PowerShell
Ingest Nessus files into Elasticsearch using PowerShell!
-
Updated
Apr 26, 2024 - PowerShell
A walkthrough of creating and using the Azure environment and Microsoft Sentinel to track attacks and plot attacks on a live map.
-
Updated
Mar 26, 2023 - PowerShell
Powershell script to query IBM Qradar SIEM and to generate KPI
-
Updated
May 12, 2023 - PowerShell
Vulnerability detection, OSquery, fully-fledged Wazuh ELK stack with Linux and Windows Wazuh + osquery enrollment via Ansible.
-
Updated
Jun 14, 2022 - PowerShell
Build a fast, free, and effective Threat Hunting/Incident Response Log with Windows Event Forwarding
-
Updated
May 6, 2018 - PowerShell
CyberThreat Monitor (SIEM Lab) with Microsoft Azure is a comprehensive threat monitoring solution built on Azure Sentinel, providing real-time visibility into global cyber threats.
-
Updated
Oct 5, 2023 - PowerShell
Ingest Nessus files into Elasticsearch using PowerShell!
-
Updated
May 16, 2024 - PowerShell
A PowerShell module interface for working with the Securonix Web API
-
Updated
Feb 13, 2023 - PowerShell
Analyzing PowerShell execution on Windows systems.
-
Updated
Feb 20, 2024 - PowerShell
Improve this page
Add a description, image, and links to the siem topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the siem topic, visit your repo's landing page and select "manage topics."