hayabusa
There are 5 repositories under hayabusa topic.
Yamato-Security/hayabusa
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
Yamato-Security/EnableWindowsLogSettings
Documentation and scripts to properly enable Windows event logs.
Yamato-Security/hayabusa-rules
Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.
Yamato-Security/takajo
Takajō (鷹匠) is a Hayabusa results analyzer.
TobiasS1402/hayabusa-docker
Running https://github.com/Yamato-Security/hayabusa in a Docker container with a Flask API wrapped around for on-demand cloud functions