Is it possible to analyze old Windows Event Logs to find IOAs or IOCs with Wazuh?

This page summarizes the projects mentioned and recommended in the original post on /r/Wazuh
hardware-buttons linkedin-bot template-engine-js

Stream - Scalable APIs for Chat, Feeds, Moderation, & Video.
Stream helps developers build engaging apps that scale to millions with performant and flexible Chat, Feeds, Moderation, and Video APIs and SDKs powered by a global edge network and enterprise-grade infrastructure.
getstream.io
featured
InfluxDB – Built for High-Performance Time Series Workloads
InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.
www.influxdata.com
featured

  1. DeepBlueCLI

  2. Stream

    Stream - Scalable APIs for Chat, Feeds, Moderation, & Video. Stream helps developers build engaging apps that scale to millions with performant and flexible Chat, Feeds, Moderation, and Video APIs and SDKs powered by a global edge network and enterprise-grade infrastructure.

    Stream logo

  3. hayabusa

    Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

    Hayabusa https://github.com/Yamato-Security/hayabusa

  4. EVTX-ETW-Resources

    Event Tracing For Windows (ETW) Resources

    ETW resources https://github.com/nasbench/EVTX-ETW-Resources

  5. SilkETW

  6. ATTACK

    MITRE ATT&CK Windows Logging Cheat Sheets

    ATT&CK Cheat Sheets https://github.com/MalwareArchaeology/ATTACK

  7. InfluxDB

    InfluxDB – Built for High-Performance Time Series Workloads. InfluxDB 3 OSS is now GA. Transform, enrich, and act on time series data directly in the database. Automate critical tasks and eliminate the need to move data externally. Download now.

    InfluxDB logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts

  • Hayabusa: Sigma-based forensics timeline generator for Windows event logs

    1 project | news.ycombinator.com | 24 Apr 2024

  • Release v2.5.0 🦅 of Hayabusa - Hayabusa is a Windows event log fast forensics timeline generator and threat hunting tool

    1 project | /r/blueteamsec | 7 May 2023

  • Analysing Hayabusa Results with jq

    1 project | /r/blueteamsec | 16 Jan 2023

  • Yamato-Security/hayabusa: Hayabusa is a threat hunting and fast forensics timeline generator for Windows event logs.

    1 project | /r/cyber_deception | 26 Dec 2021

  • hayabusa: Hayabusa is a threat hunting and fast forensics timeline generator for Windows event logs.

    2 projects | /r/blueteamsec | 25 Dec 2021
Loading...