-
I would only like to host rules in this repository so I separated the converter tool to this separate repo: https://github.com/Yamato-Security/sigma-to-hayabusa-converter
@fukusuket Could you update …
-
@fukusuket Sorry I noticed this bug after merging the previous PR..
I am using this rule:
```
title: Value Count TEST
id: 0e95725d-7320-415d-80f7-004da920fc11
level: high
correlation:
type:…
-
Please do not triage for two weeks. Give people time to comment. Thanks.
When SVC-2900 was resolved we finally got the means to block public rezzing of objects owned by anyone on the parcel banli…
-
Hello :)
Since the `Hayabusa Ruleset` were recently updated, I compared the results of `Hayabusa` and `Velociraptor Sigma plugin`.
I would appreciate it if you could check it out.
Thank you!
#…
-
**Describe the bug**
Using the Velociraptor artifact I noticed that defender is getting triggered on the rules that are unpacked to the disk.
![image](https://github.com/Yamato-Security/hayabus…
-
- [x] [`c_CTRL-V`](http://vim-jp.org/vimdoc-ja/cmdline.html#c_CTRL-V) 次に打ち込まれた非数字文字を、その通りに挿入する
- [x] [`c_CTRL-Q`](http://vim-jp.org/vimdoc-ja/cmdline.html#c_CTRL-Q) Ctrl-Vと同様
- [x] [`c_Left`](http://v…
-
Investigate the possibility of increased memory usage in later releases of the low-memory feature.
-
**Describe the bug**
Nothing is detected when using the `-J, --JSON-input` option with the timeline command because of `Channel` filer https://github.com/Yamato-Security/hayabusa/pull/1334 :(
This…
-
Currently, the field mapping feature does not support following point:
- `Provider_name` matching
- e.g. Since the Application log has multiple `Provider_names`, we need to convert the field value…
-