4 results found Sort:

Yamato-Security
hayabusa Yamato-Security
180
2.1k
gpl-3.0
39
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
dfir logs rust event sigma attack threat yamato hunting windows hayabusa incident response security detection forensics cybersecurity threat-hunting incident-response security-automation
Created 2020-09-18
4,099 commits to main branch, last one 5 days ago
Yamato-Security
EnableWindowsLogSettings Yamato-Security
50
504
gpl-3.0
11
Documentation and scripts to properly enable Windows event logs.
dfir logs event sigma sysmon windows auditing hayabusa security forensics monitoring
Created 2022-09-22
49 commits to main branch, last one 9 months ago
Yamato-Security
hayabusa-rules Yamato-Security
20
117
other
9
Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.
log dfir event mitre sigma attack windows analysis hayabusa
Created 2021-12-10
1,014 commits to main branch, last one 3 days ago
Yamato-Security
takajo Yamato-Security
4
59
gpl-3.0
5
Takajō (鷹匠) is a Hayabusa results analyzer.
log nim event windows analysis hayabusa nim-lang
Created 2022-06-30
587 commits to main branch, last one about a month ago