GrokEVT Logo

GrokEVT

0
Free
SIEM
windows
event-log
log-analysis
python
scripting
Visit Website

GrokEVT is a collection of scripts built for reading Windows® NT/2K/XP/2K3 event log files. GrokEVT is released under the GNU GPL, and is implemented in Python. The scripts work together on one or more mounted Windows® partitions to extract all information needed (registry entries, message templates, and log files) to convert the logs to a human-readable format.

FEATURES

ALTERNATIVES

SysmonSearch Logo
SysmonSearch

SysmonSearch makes event log analysis more effective by aggregating Microsoft Sysmon logs and providing detailed analysis through Elasticsearch and Kibana.

Free
SIEM
Synthetic Adversarial Log Objects (SALO) Logo
Synthetic Adversarial Log Objects (SALO)

A framework for generating log events without the need for infrastructure, allowing for simple, repeatable, and randomized log event creation.

Free
SIEM
HoneyView Logo
HoneyView

HoneyView is a tool for analyzing honeyd logfiles graphically and textually.

Free
SIEM
OpenSOC Logo
OpenSOC

A centralized tool for security monitoring and analysis that integrates various open source big data technologies.

Free
SIEM
visualize_logs Logo
visualize_logs

Python library and command line tools for log visualization with interactive plots.

Free
SIEM
LORG Logo
LORG

A tool for advanced HTTPD logfile security analysis and forensics, implementing various techniques to detect attacks against web applications.

Free
SIEM
Graylog Logo
Graylog

Graylog offers advanced log management and SIEM capabilities to enhance security and compliance across various industries.

Commercial
SIEM
aws-logsearch Logo
aws-logsearch

Search AWS CloudWatch logs on the command line with aws-sdk-for-go.

Free
SIEM

PINNED

InfoSecHired Logo

InfoSecHired

An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Commercial
Resources
Mandos Brief Newsletter Logo

Mandos Brief Newsletter

A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Free
Resources
Kriptos Logo

Kriptos

An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.

Commercial
Data Protection
System Two Security Logo

System Two Security

An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.

Commercial
Security Operations
Aikido Security Logo

Aikido Security

Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.

Commercial
Application Security
Permiso Logo

Permiso

Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.

Commercial
IAM
Wiz Logo

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial
Cloud Security
Adversa AI Logo

Adversa AI

Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.

Commercial
AI Security