Explore
By company size
By use case
By industry
View all solutions
Topics
- AI
- DevOps
- Security
- Software Development
- View all
Explore
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
- Enterprise platform
  AI-powered developer platform
Available add-ons
Pricing

Search code, repositories, users, issues, pull requests...

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

WithSecureLabs / chainsaw Public

Notifications You must be signed in to change notification settings
Fork 272
Star 3k

Code
Issues 12
Pull requests 2
Discussions
Actions
Projects
Wiki
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Discussions
Actions
Projects
Wiki
Security
Insights

Releases: WithSecureLabs/chainsaw

Releases Tags

Releases · WithSecureLabs/chainsaw

v2.6.2

02 Jun 16:02

github-actions

v2.6.2

ba2f080

Compare

Choose a tag to compare

View all tags

v2.6.2

This release contains the following changes of note:

Adds array indexing support to key identifiers (tau-engine), which also fixes some chainsaw rules...

Assets 7

All reactions

v2.6.1

02 Jun 14:17

github-actions

v2.6.1

f187dac

Compare

Choose a tag to compare

View all tags

v2.6.1

This release contains the following changes of note:

Fix hunts not running on .jsonl files
Bring in some false positive reduction for the default Sigma rules mapping file

Assets 7

All reactions

v2.6.0

03 Apr 13:10

github-actions

v2.6.0

5922139

Compare

Choose a tag to compare

View all tags

v2.6.0

This release contains the following changes of note:

A new feature for creating execution timelines using shimcache artifacts with optional amcache enrichment
Added functionality to parse Windows registry hive files
Fixed missing check make sure that path is not a file when using csv to prevent time wasting
Upgraded to the new Tau engine that has full support for floats

Assets 7

RomelSan, fscc-samiR, ssnkhan, and AndrewRathbun reacted with thumbs up emoji

All reactions

👍 4 reactions

4 people reacted

v2.5.0

17 Feb 19:09

github-actions

v2.5.0

6aa5ae5

Compare

Choose a tag to compare

View all tags

v2.5.0

This release contains the following changes of note:

Bring in upstream fix for evtx files that contain the size_t type (thanks to upstream for such a quick turn around)
Add in a dump command so that people stop bodging the functionality via search
Minor fixes and tweaks

Assets 7

RomelSan and hitenkoku reacted with thumbs up emoji

All reactions

👍 2 reactions

2 people reacted

v2.4.0

17 Feb 09:43

github-actions

v2.4.0

b3d4a62

Compare

Choose a tag to compare

View all tags

v2.4.0

This release contains the following changes of note:

Add back in the version flag
Multiple optimisations to the hunt feature of Chainsaw
Allow JSONL to stream out when hunting to reduce RAM usage when a large number of files are passed
Allow number of threads to be specified when hunting
Add preprocessing option to hunting for further speed up (only really required when single threaded)
Minor fixes and tweaks

Assets 7