EVTX-to-MITRE-Attack Alternatives
Similar projects and alternatives to EVTX-to-MITRE-Attack based on common topics and language
-
evtx-hunter
evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
NOTE:
The number of mentions on this list indicates mentions on common posts plus user suggested alternatives.
Hence, a higher number means a better EVTX-to-MITRE-Attack alternative or higher similarity.
EVTX-to-MITRE-Attack reviews and mentions
Posts with mentions or reviews of EVTX-to-MITRE-Attack.
We have used some of these posts to build our list of alternatives
and similar projects.
-
Mapping MITRE ATT&CK with Window Event Log IDs
Direct GitHub link bc ads. Like I commented last time I saw this project, I think it's a good starting point, but an important note: These mappings are 1:1. You should not limit your correlations to 1:1, but rather one ATT&CK term to many event IDs. Each technique can often be mapped to many, many different event IDs. And analysis / alerting on these events needs to be context aware, looking at other events before and after. When we approached this problem (mapping ATT&CK to detection logic) we realized there was almost never a scenario where event IDs could map 1:1 with the ATT&CK Matrix.
Source Github Link no ads.
Stats
Basic EVTX-to-MITRE-Attack repo stats
2
476
3.7
about 2 months ago
mdecrevoisier/EVTX-to-MITRE-Attack is an open source project licensed under Creative Commons Zero v1.0 Universal which is not an OSI approved license.
Popular Comparisons
Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com