From b43f41e7f25ae601a8e4214a215c257c01c5dc81 Mon Sep 17 00:00:00 2001
From: Alan Smithee <nextsasasa@gmail.com>
Date: Wed, 2 Mar 2022 17:59:39 +0900
Subject: [PATCH] fixed command option in usage

- UTC option is changed from -u to -U
- Run onlive Windows machine is adjusted -l (--live-analysis)
---
 README-Japanese.md | 2 +-
 README.md          | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/README-Japanese.md b/README-Japanese.md
index 5d5255a3..6efd463b 100644
--- a/README-Japanese.md
+++ b/README-Japanese.md
@@ -316,7 +316,7 @@ USAGE:
 * 起動中のWindows端末上で実行し（Administrator権限が必要）、アラート（悪意のある可能性のある動作）のみを検知します:
 
 ```bash
-.\hayabusa.exe -d C:\Windows\System32\winevt\Logs -m low
+.\hayabusa.exe -l -m low
 ```
 
 * イベントIDの統計情報を取得します:
diff --git a/README.md b/README.md
index 324a0a96..0aa63859 100644
--- a/README.md
+++ b/README.md
@@ -318,7 +318,7 @@ USAGE:
 * Run on a live Windows machine (requires Administrator privileges) and only detect alerts (potentially malicious behavior):
 
 ```bash
-.\hayabusa.exe -d C:\Windows\System32\winevt\Logs -m low
+.\hayabusa.exe -l -m low
 ```
 
 * Get event ID statistics: