Tag Archives: sysmon

Grapl – Graph platform for Detection and Response

Grapl is a Graph Platform for Detection and Response with a focus on helping Detection Engineers and Incident Responders stop fighting their data.

Attack_monitor – Endpoint detection & Malware analysis software

Attack_monitor is Python application written to enhance security monitoring capabilities of Windows 7/2008 (and all later versions) workstations/servers and to automate dynamic analysis of malware.

Beagle – IR Tool To Transform Data Sources Into Graphs

Beagle is an incident response and digital forensics tool which transforms data sources and logs into graphs.

SysmonSearch – Investigate suspicious activity by visualizing Sysmon’s event log

SysmonSearch make event log analysis more effective and less time consuming, by aggregating event logs generated by Microsoft's Sysmon.