![Windows EVTX Samples [200 EVTX examples] Logo](/_next/image?url=https%3A%2F%2Fkcjlih8bwjd7vpzd.public.blob.vercel-storage.com%2Fgithub-pNnWZrsWcngjHtgmLcqC9TLc5g3tJS.webp&w=128&q=75)
Windows EVTX Samples [200 EVTX examples]
This container provides 200 Windows events samples related to specific attack and post-exploitation techniques, useful for testing detection scripts, training on DFIR and threat hunting, and designing detection use cases using Windows and Sysmon event logs. It includes a PowerShell script for parsing and replaying EVTX files with Winlogbeat.
FEATURES
ALTERNATIVES
DNSDumpster is a domain research tool for discovering and analyzing DNS records to map an organization's attack surface.
A system for collecting, managing, and distributing security information on a large scale, developed by CERT Polska.
Machinae is a tool for collecting intelligence from public sites/feeds about various security-related pieces of data.
C# wrapper around Yara pattern matching library with Loki and Yara signature support.
A comprehensive Threat Intelligence Program Management Solution for managing the entire CTI lifecycle.
A nonprofit security organization that collects and shares threat data to make the Internet more secure.
A PowerShell script to interact with the MITRE ATT&CK Framework via its own API using the deprecated MediaWiki API.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.