Github PK Tool:Github PK Tool
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
Detection rules for Hayabusa
A fork of the evtx Rust crate for Hayabusa
Takajō (鷹匠) is an analyzer for Hayabusa results written in Nim.
Documentation and scripts to properly enable Windows event logs.
Sample evtx files to use for testing hayabusa detection rules
RustyBlue is a rust implementation of DeepblueCLI, a forensics log analyzer for finding evidence of compromise from windows event logs.
WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅（ウェラ）