-
**Describe the bug**
It's not actually Hayabusa's bug ... :(
but the browser(Edge/Chrome) is blocking the download, so the [hayabusa-2.16.0-win-x64.zip](https://github.com/Yamato-Security/hayabusa/…
-
### Package Name
hayabusa
### Tool Name
Hayabusa
### Package type
ZIP_EXE
### Tool's version number
2.1.0
### Category
Forensic
### Tool's authors
Yamato Security
### Tool's description
H…
-
@fukusuket Could I ask you to do this one?
We need to create a github action to copy all of the hayabusa and sigma rules from the hayabusa-rules repository and encrypt and zip them into a `rules.zip`…
-
In order to prevent Windows defender from alerting on false positives on yml rules and to minimize the amount of files we need to save to the system, I would like to have hayabusa load the rules from …
-
The following tests are failing on dev:
unit tests:
- [ ] isis_unit_test_Cube
- [ ] isis_unit test NaifDskShape
app tests:
- [ ] cubeit_app_test_badinputs
- [ ] spicefit_app_test_default
- …
-
**Describe the bug**
In a particular environment, the command json-timeline or csv-timeline cannot read the EVTX folder, but can read a file alone.
**Step to Reproduce**
Steps to reproduce the …
-
There are a couple of rules that cause false positives with Windows defender so we would like to ignore them and not create them in the `hayabusa-rules` repository until we can create a fix with hayab…
-
Tasks:
update import app hyb2onc2isis
write export app hyb2rdrgen
update calibration app to latest cal report hyb2cal
-
`$ ./target/release/hayabusa csv-timeline -f ../hayabusa-sample-evtx/YamatoSecurity/Sysmon/Sysmon-27-BlockExeWrite_AbusingCertutil.evtx`
の状態からusageみたいなものを(他のオプションなど)を表示することが可能なら、便利かもしれない。
今は、
…
-
Would it be possible to add a `--low-memory-mode` option for Takajo, similar to the recently added option in Hayabusa?
I often process Windows Event Forwarding (WEF) logs (ForwardedEvents.evtx), wh…