8ccaf1d21d
add: #615 feature
2022-07-02 16:51:50 +09:00
b0b1398927
add: v1.4.2 format
2022-07-02 16:49:12 +09:00
70c6f28556
update changelog and readme 1.4.1
2022-06-30 12:09:00 +09:00
220bac46e4
update changelog
2022-06-29 23:21:14 +09:00
70f03887e8
Merge branch 'main' into 606-print-all-field-info-when-no-details-are-defined
2022-06-29 22:31:38 +09:00
a2d8b9bb24
updated changelog #606
2022-06-29 20:51:54 +09:00
37f9350082
updated changelog #608
2022-06-29 00:32:38 +09:00
09f8af971e
Merge branch 'main' into 603-bug-non-utf-8-byte-sequences-error-with-color-output
2022-06-26 07:08:06 +09:00
aa69a5ac76
update changelog
2022-06-26 07:01:55 +09:00
53ca69b05e
updated changelog and updated rules #603
2022-06-26 00:29:56 +09:00
f4dea799bc
Merge branch 'main' into 592-config-flag-seems-to-be-ignored
2022-06-25 21:57:01 +09:00
a8925e3651
updated changelog #602
2022-06-25 00:33:16 +09:00
7937ea41d5
Merge branch 'main' into 596-new-feature-exclude-status
2022-06-24 23:43:44 +09:00
085795d924
fixed sentence in changelog
2022-06-24 22:19:39 +09:00
beb721aeea
Merge branch 'main' into 592-config-flag-seems-to-be-ignored
2022-06-23 21:22:17 +09:00
3a493d6beb
updated changelog #592
2022-06-23 20:46:18 +09:00
9b131fd317
update chage log jp #595
2022-06-22 23:58:36 +09:00
965e2bb91c
update changelog and readme text
2022-06-21 16:30:24 +09:00
ec6e0b7c04
updated changelog #596
2022-06-21 15:11:58 +09:00
b4ef082525
Merge pull request #594 from Yamato-Security/586-evtx-files-with-different-extension-option
...
evtx files with different extension option( --add-file-extentions)
2022-06-21 12:09:41 +09:00
e37371a077
update readme and option name
2022-06-21 11:00:32 +09:00
ab440231eb
updated changelog #586
2022-06-20 20:19:58 +09:00
4a92ff8efc
fixed changelog typo
2022-06-19 23:42:09 +09:00
00dce590a5
updated changelog #359
2022-06-19 23:36:01 +09:00
334c401cda
Merge branch 'main' into clap_update_v3
2022-06-14 22:53:52 +09:00
ce51728070
v1.3.2
2022-06-13 08:55:01 +09:00
28fabf6c9b
updated changelog #387 #413
2022-06-13 02:18:54 +09:00
e390940633
finalize 1.3.1
2022-06-12 14:48:07 +09:00
d37c6b1866
Merge branch 'main' into 583-enhancement-output-processing-rules-msg-and-rule-status-metrics
2022-06-11 15:29:14 +09:00
da5a025f93
updated changelog #583
2022-06-11 04:31:57 +09:00
f55dd7ebf9
updated changelog #579
2022-06-10 16:59:13 +09:00
9abff480e9
Merge branch 'main' into 574-add-more-timestamp-format-options
2022-06-10 12:00:35 +09:00
513378dc76
updated changelog #577
2022-06-09 02:26:05 +09:00
bf4f80a8b4
update changelog #487
2022-06-09 02:20:14 +09:00
925e386fb2
added template in v1.3.1 changeme
2022-06-09 02:14:04 +09:00
77b063639b
updated changelog #574
2022-06-08 19:13:29 +09:00
865761f35d
strip symbols when compiling
2022-06-07 10:51:34 +09:00
d00737c033
add view event frequency timeline option ( #567 )
...
* added option visual-timeline option #566
* updated readme #566
* updated changelog #566
* updated rules
* cargo fmt
* change --visual-timeline to --visualize-timeline
Co-authored-by: Tanaka Zakku <71482215+YamatoSecurity@users.noreply.github.com >
2022-06-05 17:41:08 +09:00
6811acae6a
changelog date update ( #565 )
...
* changelog date update
* quick-xml and static_vcruntime update
2022-06-04 15:35:43 +09:00
0df42b67ba
output saving results message ( #563 )
...
* added Results Summary title #561
* added results message when output option is enabled. #561
* version number update
* added newline
* removed newline
* tuned output #561
* fixed bug that console output table header color is same with 1st row color #561
* cargo fmt
2022-06-03 20:49:26 +09:00
9e1fabb21e
display computers with most alerts ( #558 )
...
* added top3 alert by level and computer #557
* cargo fmt
* updated changelog #557
* updated readme #557
* added output when one computer name in level. #557
* updated screenshot
* updated rules
* add SOF-ELK link
* readme update
* readme update
* cargo fmt
* change display num from 3 to 5 #557
* excluded count when computer name is "-" in event and fixed output #557
- removed warn output.
- changed output when count is 0.
* cargo fmt
* changed computer name summary to filter unique computer name and rule path pair #557
* cargo fmt
* readme update change order of output
* changelog update
* fixed crash bug when level is not valid #560 #557
Co-authored-by: Tanaka Zakku <71482215+YamatoSecurity@users.noreply.github.com >
2022-06-03 12:01:14 +09:00
af5a85fc0c
separate excluded and noisy rules count ( #559 )
...
* changed ignored rules display separately exclude rules and noisy rules.
* fixed tests #556
* cargo fmt
* updated changelog #556
* change order
* sorted output order #556
* cargo fmt
* screenshot update
Co-authored-by: Tanaka Zakku <71482215+YamatoSecurity@users.noreply.github.com >
2022-06-03 11:56:20 +09:00
39468d3b06
fixed bug hayabusa crashes when level is not valid ( #562 )
...
* fixed undefined level unwarp panic bug #560
* updated changelog #560
2022-06-03 11:55:22 +09:00
2dcf960d51
display default channel name if not defined ( #555 )
...
* displayed other channel data in Channel column #553
* updated changelog #553
* updated changelog
* readme and channel abbreviataions update
* changelog update
Co-authored-by: Tanaka Zakku <71482215+YamatoSecurity@users.noreply.github.com >
2022-06-01 13:01:14 +09:00
7a7afe732c
most detections summary by date ( #551 )
...
* added Date with most detections by level #550
* cargo fmt
* updated changelog #550
* updated readme #550
* removed most undefined detections date in summary #550
* cargo fmt
* add space after level tuning
* changed undefined rule detection count to no show #550
* cargo fmt
* readme update
* channel abb update
* channel abb update
* readme update
Co-authored-by: Tanaka Zakku <71482215+YamatoSecurity@users.noreply.github.com >
2022-05-31 22:29:51 +09:00
4c1aa94eba
display logo in green ( #552 )
...
* added termcolor reset function #537
* added logo green output #537
* fixed test
* cargo fmt
* updated changelog #537
* fixed clippy error
* update logo screenshot
* updated rules
* changed no colored logo when --no-color option is enabled
* fixed colored reset bug when --update-rules option is enabled
* fixed color reset bug when --level-tuning option is enabled
* cargo fmt
Co-authored-by: Tanaka Zakku <71482215+YamatoSecurity@users.noreply.github.com >
2022-05-31 17:06:12 +09:00
2653e87588
start timeline and end timeline do not work ( #547 )
...
* fixed dont work start-timeline and end-timeline #546
* fixed condition
* added changelog #546
* changelog update
* changed stop analysis when start-timeline and end-timeline happend parse error #546
* cargo fmt
* fixed alert message
* fixed lack of timestamp convert
* cargo fmt
* readme/usage update
Co-authored-by: Tanaka Zakku <71482215+YamatoSecurity@users.noreply.github.com >
2022-05-28 10:07:39 +09:00
a17d0d4e37
display EventRecordID ( #549 )
...
* added -R --display-record-id #548
* fixed test data #548
* cargo fmt
* added describe of -R --display-record-id option to README #548
* updated changelog #548
* readme update
Co-authored-by: Tanaka Zakku <71482215+YamatoSecurity@users.noreply.github.com >
2022-05-27 22:19:40 +09:00
69c41c4859
540 enhancement print total evtx file size ( #545 )
...
* added ByteSize crate #540
* displayed total evtx file size #540
* updated CHANGELOG #540
* cargo fmt
* added blank like, updated cargo
Co-authored-by: Tanaka Zakku <71482215+YamatoSecurity@users.noreply.github.com >
2022-05-27 11:11:44 +09:00
7be79efc21
fixed event timeline frequency font color changed when use f option #542 ( #544 )
...
* fixed event timeline frequency font color changed when use f option #542
* fixed duplicate count detection to same record in data reduction #543
* fixed error #542
* fixed fmt
* fixed error
* changed no frequency timeline output when events is less than 5 record.
* Error message update
* added newline after progress bar
* fixed frequency timeline logic to pass test
* cargo fmt
* Added CHANGELOG #533 #538 #525
* changelog update
* updated readme #533 #538
* readme update
* startup logo update
Co-authored-by: Tanaka Zakku <71482215+YamatoSecurity@users.noreply.github.com >
2022-05-27 10:13:40 +09:00
DastInDark
Tanaka Zakku
DustInDark