Companion Projects

• EnableWindowsLogSettings - documentation and scripts to properly enable Windows event logs.
• Hayabusa - sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
• Hayabusa Rules - detection rules for hayabusa.
• Hayabusa Sample EVTXs - sample evtx files to use for testing hayabusa/sigma detection rules.
• WELA (Windows Event Log Analyzer) - analyzer for Windows event logs written in PowerShell.