One thing I like to do for those CSV files, "Import-CSV -Path C:\PathtoCSV | Out-GridView". Don't need excel installed, pops up a GUI window that allows you to quickly see the info in a table format, and you can filter on the results. All without having to leave PowerShell.
Ah gotcha, there is a artifact for hayabusa - you can find more about it here. docs.velociraptor.app/exchange/artifacts/pages/windows.eventlogs.hayabusa/
@@MyDFIR Hi when i scan my computer with it i have low med and high level detection on my pc. it is more than 1k problems found on my pc. how can i fix all of this is there another script to fix it fast or i need to one by one fix it?
One thing I like to do for those CSV files, "Import-CSV -Path C:\PathtoCSV | Out-GridView". Don't need excel installed, pops up a GUI window that allows you to quickly see the info in a table format, and you can filter on the results. All without having to leave PowerShell.
You’re absolutely right! I love gridview and always forget its there 😂 always used timeline explorer as my primary
so quick and easy tool, thank you for the demo
You're welcome!
Another great video thanks!
Thanks for watching!
Thankyou sir❤
Thanks for watching ❤️
Wow thank you so much!❤
Any time! Thanks for watching 😁
Great tool!!! 🔥🔥🔥
It sure is!
Where can we get the example file to test on?
You can search up “sample evtx files” on google and grab them there
How to collaborate with velociraptor and how to find Malware activity in client server using velociraptor
Sorry I am not sure what you mean by collaborate. And with malware, you can run a yara hunt throughout the hosts and see if it picks up on any hits.
1:11 I am taking about this how to add Hayabusa at velociraptor
Ah gotcha, there is a artifact for hayabusa - you can find more about it here. docs.velociraptor.app/exchange/artifacts/pages/windows.eventlogs.hayabusa/
@@MyDFIRi didn't get that documentation so please make video on that
is there an app that can solve all problem if not many when it sees the log file. or is it one by one solving?
Not sure what you meant by all problem - could you please clarify?
@@MyDFIR Hi when i scan my computer with it i have low med and high level detection on my pc. it is more than 1k problems found on my pc. how can i fix all of this is there another script to fix it fast or i need to one by one fix it?