Yamato-Security / hayabusa Star 2k Code Issues Pull requests Discussions Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs. windows rust security attack detection incident-response logs event threat forensics dfir cybersecurity response threat-hunting hunting sigma incident security-automation yamato hayabusa Updated May 16, 2024 Rust
Yamato-Security / EnableWindowsLogSettings Star 454 Code Issues Pull requests Documentation and scripts to properly enable Windows event logs. windows security auditing monitoring logs event forensics dfir sysmon sigma hayabusa Updated Sep 20, 2023 Batchfile
Yamato-Security / hayabusa-rules Star 112 Code Issues Pull requests Discussions Curated Windows event log Sigma rules used in Hayabusa and Velociraptor. windows attack log analysis event dfir mitre sigma hayabusa Updated May 13, 2024 Python
Yamato-Security / takajo Star 50 Code Issues Pull requests Discussions Takajō (鷹匠) is a Hayabusa results analyzer. windows nim log analysis event nim-lang hayabusa Updated Apr 26, 2024 Nim
TobiasS1402 / hayabusa-docker Star 0 Code Issues Pull requests Running https://github.com/Yamato-Security/hayabusa in a Docker container with a Flask API wrapped around for on-demand cloud functions docker flask functions security-automation hayabusa Updated Jan 29, 2024 Python