Zircolite Alternatives

Name: wagga40/Zircolite
Brand: wagga40/Zircolite
SKU: project/wagga40/Zircolite
Rating: 4.62 (547 reviews)

A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs

Categories > Security > Sysmon

Suggest Alternative

Stars

547

Alternatives

License

No license specified

Open Issues

Most Recent Commit

over 2 years ago

Programming Language

Python

Dependent Repos

Dependent Packages

Total Releases

Categories

Programming Languages > Python

Security > Sysmon

Repo

Alternatives To wagga40/Zircolite

Project Name	Stars	Repos Using This	Packages Using This	Most Recent Commit	Total Releases	Latest Release	Open Issues	License	Language
SigmaHQ/sigma	7,267	3	2	about 2 years ago	35	January 13, 2019	22	other	Python
Main Sigma Rule Repository
clong/DetectionLab	4,394	0	0	about 3 years ago	0		31	mit	HTML
Automate the creation of a lab environment complete with security tooling and logging best practices
SwiftOnSecurity/sysmon-config	4,391	0	0	over 2 years ago	0		78
Sysmon configuration file template with default high-quality event tracing
crazy-max/WindowsSpyBlocker	3,920	0	0	almost 3 years ago	0		35	mit	Go
Block spying and tracking on Windows
OTRF/ThreatHunter-Playbook	3,740	0	0	almost 3 years ago	0		5	mit	Python
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
olafhartong/sysmon-modular	2,364	0	0	over 2 years ago	0		37	mit	PowerShell
A repository of sysmon configuration modules
splunk/attack_range	1,874	0	0	about 2 years ago	0		9	apache-2.0	Jinja
A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk
nshalabi/SysmonTools	1,405	0	0	over 2 years ago	0		7
Utilities for Sysmon
netevert/sentinel-attack	1,029	0	0	over 2 years ago	0		12	mit	HCL
Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK
trustedsec/SysmonCommunityGuide	1,009	0	0	over 2 years ago	0		7		CSS
TrustedSec Sysinternals Sysmon Community Guide

Alternatives To wagga40/Zircolite

Select To Compare

SigmaHQ/sigma ⭐ 7,267

Main Sigma Rule Repository

dependent packages 2 total releases 35 most recent commit about 2 years ago downloads badge

clong/DetectionLab ⭐ 4,394

Automate the creation of a lab environment complete with security tooling and logging best practices

dependent packages 0 total releases 0 most recent commit about 3 years ago

SwiftOnSecurity/sysmon-config ⭐ 4,391

Sysmon configuration file template with default high-quality event tracing

dependent packages 0 total releases 0 most recent commit over 2 years ago

crazy-max/WindowsSpyBlocker ⭐ 3,920

Block spying and tracking on Windows

dependent packages 0 total releases 0 most recent commit almost 3 years ago

OTRF/ThreatHunter-Playbook ⭐ 3,740

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

dependent packages 0 total releases 0 most recent commit almost 3 years ago

olafhartong/sysmon-modular ⭐ 2,364

A repository of sysmon configuration modules

dependent packages 0 total releases 0 most recent commit over 2 years ago

splunk/attack_range ⭐ 1,874

A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk

dependent packages 0 total releases 0 most recent commit about 2 years ago

nshalabi/SysmonTools ⭐ 1,405

Utilities for Sysmon

dependent packages 0 total releases 0 most recent commit over 2 years ago

netevert/sentinel-attack ⭐ 1,029

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

dependent packages 0 total releases 0 most recent commit over 2 years ago

trustedsec/SysmonCommunityGuide ⭐ 1,009

TrustedSec Sysinternals Sysmon Community Guide

dependent packages 0 total releases 0 most recent commit over 2 years ago

Suggest An Alternative To Zircolite

Alternative Project Comparisons

wagga40/Zircolite vs Sigma

wagga40/Zircolite vs Detectionlab

wagga40/Zircolite vs Sysmon Config

wagga40/Zircolite vs Windowsspyblocker

wagga40/Zircolite vs Threathunter Playbook

wagga40/Zircolite vs Sysmon Modular

wagga40/Zircolite vs Attack_range

wagga40/Zircolite vs Sysmontools

wagga40/Zircolite vs Sentinel Attack

wagga40/Zircolite vs Sysmoncommunityguide

Popular Sysmon Projects

0xrawsec/whids⭐ 921

Open Source EDR for Windows

MHaggis/sysmon-dfir⭐ 872

Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.

A3sal0n/CyberThreatHunting⭐ 755

A collection of resources for Threat Hunters - Sponsored by Falcon Guard

wagga40/Zircolite⭐ 547

A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs

JPCERTCC/SysmonSearch⭐ 405

Investigate suspicious activity by visualizing Sysmon's event log

Popular Projects Projects

freeCodeCamp/freeCodeCamp⭐ 382,211

freeCodeCamp.org's open-source codebase and curriculum. Learn to code for free.

EbookFoundation/free-programming-books⭐ 309,521

:books: Freely available programming books

sindresorhus/awesome⭐ 286,528

😎 Awesome lists about all kinds of interesting topics

public-apis/public-apis⭐ 276,890

A collective list of free APIs

jwasham/coding-interview-university⭐ 276,059

A complete computer science study plan to become a software engineer.

Popular Security Categories

Security

Token

Authentication

Password

Oauth

Scanner

Cryptography

Ssh

Role

Session