4 results found Sort:

Yamato-Security
hayabusa Yamato-Security
202
2.3k
agpl-3.0
41
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
dfir logs rust event sigma attack threat yamato hunting windows hayabusa incident response security detection forensics cybersecurity threat-hunting incident-response security-automation
Created 2020-09-18
4,423 commits to main branch, last one 3 days ago
Yamato-Security
EnableWindowsLogSettings Yamato-Security
52
562
gpl-3.0
15
Documentation and scripts to properly enable Windows event logs.
dfir logs event sigma sysmon windows auditing hayabusa security forensics monitoring
Created 2022-09-22
49 commits to main branch, last one about a year ago
Yamato-Security
hayabusa-rules Yamato-Security
23
146
other
9
Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.
log dfir event mitre sigma attack windows analysis hayabusa
Created 2021-12-10
1,184 commits to main branch, last one 22 hours ago
Yamato-Security
takajo Yamato-Security
7
93
agpl-3.0
6
Takajō (鷹匠) is a Hayabusa results analyzer.
log nim event windows analysis hayabusa nim-lang
Created 2022-06-30
734 commits to main branch, last one 4 days ago