Chainsaw: Open-source tool for hunting through Windows forensic artefacts

Chainsaw is an open-source first-response tool for quickly detecting threats in Windows forensic artefacts, including Event Logs and the MFT file. It enables fast keyword searches through event logs and identifies threats using built-in Sigma detection and custom detection rules. Chainsaw features Hunt for threats using Sigma detection rules and custom detection rules Search and extract forensic artefacts by string matching and regex patterns Create execution timelines by analyzing Shimcache artefacts and enriching them with … More → The post Chainsaw: Open-source tool for hunting through Windows forensic artefacts appeared first on Help Net Security.
http://news.poseidon-us.com/THKHyy

Chainsaw: Open-source tool for hunting through Windows forensic artefacts

Like this:

Related

More Posts

GitHub CISO on security strategy and collaborating with the open-source community

Chainsaw: Open-source tool for hunting through Windows forensic artefacts

Time for a change: Elevating developers’ security skills

UK PM Starmer to outline plan to make Britain world leader in AI

ISC Stormcast For Monday, January 13th, 2025 https://isc.sans.edu/podcastdetail/9276, (Mon, Jan 13th)

Rethinking Managed IT Services: How FUJIFILM IT Services Is Shaping the Future

City of Melbourne searches for CTIO

The major CISO shifts in 2024

Australian Cyber Security Centre names its next head

Qld Justice seeks new CIO to 'promote' tech opportunities

Share this:

Like this:

Related

More Posts