hayabusa-sample-evtx
EVTX files
A collection of sample event log files used for testing and development of threat detection rules
Sample evtx files to use for testing hayabusa detection rules
45 stars
5 watching
3 forks
last commit: about 1 year ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 sbousseaden/evtx-attack-samples | A repository of Windows Event log samples associated with various attack and post-exploitation techniques. | 2,265 |
 mdecrevoisier/evtx-to-mitre-attack | Provides Windows log event indicators mapped to MITRE ATT&CK tactic and techniques | 532 |
 yarox24/evtkit | Tool to repair Windows Event Log files (.evt) acquired during forensic investigations | 18 |
| yamato-security/enablewindowslogsettings | Enables Windows event log settings to support a larger percentage of Sigma detection rules and retain logs for longer periods | 571 |
 alienvault-otx/yabin | Generates Yara signatures for identifying malware code similarities | 158 |
 williballenthin/python-evtx | A Python module for parsing Windows Event Log files (.evtx) into structured data | 732 |
 h3x2b/yara-rules | Rules and patterns used to identify malicious software | 23 |
 ericzimmerman/evtx | Tool to parse Event Viewer logs and extract useful information | 283 |
 othreecodes/apxdemo | A sample application demonstrating the use of APX MVC library and ORMlite for building a desktop app with SQLite database integration | 6 |
| williballenthin/evtxtract | Reconstructs fragments of event log data from raw binary files, including unallocated space and memory images. | 191 |
 neo23x0/rules | A centralized repository of Yara rules for detecting malware and other malicious activities. | 10 |
 xen0ph0n/yaragenerator | Automates the creation of Yara rules to detect malware and other malicious objects of interest by analyzing sample files from various sources. | 332 |
 volexity/threat-intel | A repository of threat intelligence data from public Volexity blog posts. | 342 |
 kevthehermit/yararules | A collection of Yara rules for detecting malware and other malicious patterns | 52 |
 yandex/burp-molly-pack | Security checks pack for Burp Suite that extends its functionality with plugins containing active and passive security checks. | 138 |