Hayabusa Logo

Hayabusa

0
Free
Digital Forensics
Forensics
Threat Hunting
Windows
Event Log
Visit Website

Hayabusa is a Windows event log fast forensics timeline generator and threat hunting tool created by the Yamato Security group in Japan. It is written in Rust, supports multi-threading for speed, and offers Sigma-compatible detection rules in YML format for easy customization and extensibility. It can be used for live analysis on single systems, offline analysis on multiple systems, or enterprise-wide threat hunting with Velociraptor, providing a consolidated CSV timeline output for analysis in various tools like LibreOffice, Timeline Explorer, Elastic Stack, and Timesketch.

FEATURES

ALTERNATIVES

WindowsSCOPE Logo
WindowsSCOPE

A comprehensive incident response tool for Windows computers, providing advanced memory forensics and access to locked systems.

Free
Digital Forensics
iOSForensic Logo
iOSForensic

iOSForensic is a Python tool for forensic analysis on iOS devices, extracting files, logs, SQLite3 databases, and .plist files into XML.

Free
Digital Forensics
imobax Logo
imobax

iOS Mobile Backup Xtractor tool for extracting iOS backups.

Free
Digital Forensics
Silk Guardian Logo
Silk Guardian

An anti-forensic Linux Kernel Module kill-switch for USB ports.

Free
Digital Forensics
liblnk Logo
liblnk

A library to access and parse Windows Shortcut File (LNK) format.

Free
Digital Forensics
MemProcFS Logo
MemProcFS

View physical memory as files in a virtual file system for easy memory analysis and artifact access.

Free
Digital Forensics
Timeline Explorer v0.4.0.0 Logo
Timeline Explorer v0.4.0.0

A powerful tool for analyzing and visualizing system activity timelines.

Free
Digital Forensics
Diffy (DEPRECATED) Logo
Diffy (DEPRECATED)

Diffy is a digital forensics and incident response (DFIR) tool developed by Netflix's Security Intelligence and Response Team (SIRT) for scoping compromises across cloud instances.

Free
Digital Forensics

PINNED

Mandos Brief Newsletter Logo

Mandos Brief Newsletter

A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Resources
PTJunior Logo

PTJunior

An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.

Offensive Security
CTIChef.com Detection Feeds Logo

CTIChef.com Detection Feeds

A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

Threat Management
OSINTLeak Logo

OSINTLeak

OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.

Digital Forensics
ImmuniWeb® Discovery Logo

ImmuniWeb® Discovery

ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

Attack Surface Management
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security