Esteban Rojas Villar
Back to Projects

EventLog ATT&CK Mapper

DFIRDetectionThreat Intel
View on GitHub

Overview

A security analysis tool that parses Windows Event Logs and maps observed events to MITRE ATT&CK techniques. Designed for SOC analysts and incident responders who need to quickly identify adversary techniques from log data during investigations. Helps bridge the gap between raw forensic artifacts and threat intelligence frameworks.