* added top3 alert by level and computer #557
* cargo fmt
* updated changelog #557
* updated readme #557
* added output when one computer name in level. #557
* updated screenshot
* updated rules
* add SOF-ELK link
* readme update
* readme update
* cargo fmt
* change display num from 3 to 5 #557
* excluded count when computer name is "-" in event and fixed output #557
- removed warn output.
- changed output when count is 0.
* cargo fmt
* changed computer name summary to filter unique computer name and rule path pair #557
* cargo fmt
* readme update change order of output
* changelog update
* fixed crash bug when level is not valid #560#557
Co-authored-by: Tanaka Zakku <71482215+YamatoSecurity@users.noreply.github.com>
* fixed event timeline frequency font color changed when use f option #542
* fixed duplicate count detection to same record in data reduction #543
* fixed error #542
* fixed fmt
* fixed error
* changed no frequency timeline output when events is less than 5 record.
* Error message update
* added newline after progress bar
* fixed frequency timeline logic to pass test
* cargo fmt
* Added CHANGELOG #533#538#525
* changelog update
* updated readme #533#538
* readme update
* startup logo update
Co-authored-by: Tanaka Zakku <71482215+YamatoSecurity@users.noreply.github.com>
* added reduction percent and all records cnt #538
* version updated v1.3.0-dev
* added events word
* added side margin to sparkline #533
* fixed centering
* change margin from 5 to 3
* readme warning typo fix
Co-authored-by: Tanaka Zakku <71482215+YamatoSecurity@users.noreply.github.com>
* changed no found placeholder output to n/a #528
* added n/a output to details when not found placeholder
* added v1.3.0 changelog describe and #528 enhance
* fixed typo and fixed markdown format
* fixed test
* readme, changelog, version update
Co-authored-by: Tanaka Zakku <71482215+YamatoSecurity@users.noreply.github.com>
* removed used crate in color option and add term color #481
* removed level_color.txt due to fix output color #481
* removed color definition by file
* update cargo
* removed color definiton by true type vec
* added hex crate
* added level_color.txt and color output to command prompt and powershell #481
* adjust termcolor crate
* restored level_color.txt
* remove c option #481
* fixed document #481
* fixed stdoutput test
* add no-color option #481
- disable color output when no-color option set
* added no-color option document
* Fixed clipy err
* doc, changelog, cargo pkg update
* changelog and rules update
* version up to 1.2.2
* readme and changelog update
* reformat to markdown lint
* adjusted logon summary generator section in japanese readme to english
readme
* fixed typo in readme
Co-authored-by: garigariganzy <tosada31@hotmail.co.jp>
Co-authored-by: Tanaka Zakku <71482215+YamatoSecurity@users.noreply.github.com>
* add get_pivot_keyword() func
* change function name and call it's function
* [WIP] support config file
* compilete output
* cargo fmt
* [WIP] add test
* add test
* support -o option in pivot
* add pivot mod
* fix miss
* pass test in pivot.rs
* add comment
* pass all test
* add fast return
* fix output
* add test config file
* review
* rebase
* cargo fmt
* test pass
* fix clippy in my commit
* cargo fmt
* little refactor
* change file input logic and config format
* [WIP] change output
* [wip] change deta structure
* change output & change data structure
* pass test
* add config
* cargo fmt & clippy & rebase
* fix cllipy
* delete /rules/ in .gitignore
* clean comment
* clean
* clean
* fix rebase miss
* fix rebase miss
* fix clippy
* file name output on -o to stdout
* add pivot_keywords.txt to ./config
* updated english
* Documentation update
* cargo fmt and clean
* updated translate japanese
* readme update
* readme update
Co-authored-by: DustInDark <nextsasasa@gmail.com>
Co-authored-by: Tanaka Zakku <71482215+YamatoSecurity@users.noreply.github.com>
