sysmon-config Logo

sysmon-config

0
Free
Visit Website

A Microsoft Sysinternals Sysmon configuration file template with default high-quality event tracing, serving as a great starting point for system change monitoring. This file, with detailed comments and explanations, also acts as a tutorial for Sysmon and a guide to critical monitoring areas in Windows systems.

FEATURES

ALTERNATIVES

PacBot is a platform for continuous compliance monitoring, compliance reporting, and security automation for the cloud, with a plugin-based data ingestion architecture.

Open-source, free, and scalable cyber threat intelligence and security incident response solution with improved performance and new features.

A DFIR Playbook Spec based on YAML for collaborative incident response processes.

Shuffle Automation provides an open-source platform for security orchestration, automation, and response.

Metadata repository with installation tools and cloud provider support.

A custom activity repository for Ayehu NG automation platform, allowing users to create and modify activities to fit their specific needs.

Python command line utility for incident response in AWS

A proof of concept for using the SSM Agent in Fargate for incident response