Yamato-Security | GitHub owners | Ecosyste.ms: Repos

Takajō (鷹匠) is a Hayabusa results analyzer.

Language: Nim - Size: 5.03 MB - Last synced: 1 day ago - Pushed: 2 days ago - Stars: 56 - Forks: 4

Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.

Language: Python - Size: 20.4 MB - Last synced: 2 days ago - Pushed: 2 days ago - Stars: 115 - Forks: 17

Size: 41 KB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 1 - Forks: 1

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Language: Rust - Size: 141 MB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 1,926 - Forks: 166

WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅（ウェラ）

Language: PowerShell - Size: 4.16 MB - Last synced: about 1 month ago - Pushed: over 1 year ago - Stars: 676 - Forks: 74

A fork of the evtx Rust crate for Hayabusa

Language: Rust - Size: 52.3 MB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 6 - Forks: 2

Size: 40.2 MB - Last synced: about 1 month ago - Pushed: about 2 months ago - Stars: 11 - Forks: 2

Documentation and scripts to properly enable Windows event logs.

Language: Batchfile - Size: 1.14 MB - Last synced: about 2 months ago - Pushed: 9 months ago - Stars: 441 - Forks: 45

Sample evtx files to use for testing hayabusa detection rules

Size: 8.57 MB - Last synced: about 1 month ago - Pushed: about 1 year ago - Stars: 36 - Forks: 3

RustyBlue is a rust implementation of DeepblueCLI, a forensics log analyzer for finding evidence of compromise from windows event logs.

Language: Rust - Size: 3.98 MB - Last synced: about 1 month ago - Pushed: over 1 year ago - Stars: 65 - Forks: 5

Size: 4.88 KB - Last synced: 10 months ago - Pushed: 10 months ago - Stars: 0 - Forks: 0

GitHub / Yamato-Security 9 repositories