Yamato-Security / hayabusa Star 2.2k Code Issues Pull requests Discussions Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs. windows rust security attack detection incident-response logs event threat forensics dfir cybersecurity response threat-hunting hunting sigma incident security-automation yamato hayabusa Updated Oct 9, 2024 Rust
Yamato-Security / EnableWindowsLogSettings Star 548 Code Issues Pull requests Documentation and scripts to properly enable Windows event logs. windows security auditing monitoring logs event forensics dfir sysmon sigma hayabusa Updated Sep 20, 2023 Batchfile
Yamato-Security / hayabusa-rules Star 133 Code Issues Pull requests Discussions Curated Windows event log Sigma rules used in Hayabusa and Velociraptor. windows attack log analysis event dfir mitre sigma hayabusa Updated Oct 9, 2024 Python
Yamato-Security / takajo Star 83 Code Issues Pull requests Discussions Takajō (鷹匠) is a Hayabusa results analyzer. windows nim log analysis event nim-lang hayabusa Updated Oct 6, 2024 Nim
TobiasS1402 / hayabusa-docker Star 0 Code Issues Pull requests Running https://github.com/Yamato-Security/hayabusa in a Docker container with a Flask API wrapped around for on-demand cloud functions docker flask functions security-automation hayabusa Updated Jan 29, 2024 Python