Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: wagga40/Zircolite
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: 2.9.7
Choose a base ref
...
head repository: wagga40/Zircolite
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: 2.9.9
Choose a head ref
  • 16 commits
  • 20 files changed
  • 2 contributors

Commits on Nov 26, 2022

  1. Update Advanced.md

    @wagga40
    wagga40 authored Nov 26, 2022
    Configuration menu
    Copy the full SHA
    7ad3a2e View commit details
    Browse the repository at this point in the history

Commits on Dec 6, 2022

  1. Add xxhash with events

    @ZikyHD
    ZikyHD committed Dec 6, 2022
    Configuration menu
    Copy the full SHA
    c8b4da3 View commit details
    Browse the repository at this point in the history

  2. Add timestamp try for rotten evtx files

    @ZikyHD
    ZikyHD committed Dec 6, 2022
    Configuration menu
    Copy the full SHA
    67c4539 View commit details
    Browse the repository at this point in the history

Commits on Dec 7, 2022

  1. Merge pull request #46 from ZikyHD/catch_timestamp_error 

    Add timestamp try for rotten evtx files
    @wagga40
    wagga40 authored Dec 7, 2022
    Configuration menu
    Copy the full SHA
    76e7403 View commit details
    Browse the repository at this point in the history

  2. Merge pull request #45 from ZikyHD/add_xxhash 

    Add xxhash with events
    @wagga40
    wagga40 authored Dec 7, 2022
    Configuration menu
    Copy the full SHA
    cbacc34 View commit details
    Browse the repository at this point in the history

Commits on Dec 8, 2022

  1. Add a hashes options to generate a unique hash for each event 

    Update docs
Update rules
    @wagga40
    wagga40 committed Dec 8, 2022
    Configuration menu
    Copy the full SHA
    6239786 View commit details
    Browse the repository at this point in the history

Commits on Dec 22, 2022

  1. Add the ability to use a (slow) on-disk db instead of the in-memory one

    @wagga40
    wagga40 committed Dec 22, 2022
    Configuration menu
    Copy the full SHA
    0e9f1a4 View commit details
    Browse the repository at this point in the history

Commits on Jan 8, 2023

  1. Add reset color in error prompts #48 

    Update rules
Update docs : removed reference to on the fly conversion #47
    @wagga40
    wagga40 committed Jan 8, 2023
    Configuration menu
    Copy the full SHA
    2ca921c View commit details
    Browse the repository at this point in the history

  2. Add Auditd enriched format support with GS character @frack113

    @wagga40
    wagga40 committed Jan 8, 2023
    Configuration menu
    Copy the full SHA
    33b7e33 View commit details
    Browse the repository at this point in the history

Commits on Jan 27, 2023

  1. Add an option to remove log files after analysis 

    Update ruleset
    @wagga40
    wagga40 committed Jan 27, 2023
    Configuration menu
    Copy the full SHA
    8f39b6b View commit details
    Browse the repository at this point in the history

Commits on Feb 20, 2023

  1. Add initial support for EVTXtract logs 

    Add the "--keepflat" option to keep flattened logs used in Zircolite
Update rulesets
Removed unused parameters
    @wagga40
    wagga40 committed Feb 20, 2023
    Configuration menu
    Copy the full SHA
    d753ebe View commit details
    Browse the repository at this point in the history

  2. Update readme (typos, animation)

    @wagga40
    wagga40 committed Feb 20, 2023
    Configuration menu
    Copy the full SHA
    c5b41f5 View commit details
    Browse the repository at this point in the history

  3. Update readme (typos, animation)

    @wagga40
    wagga40 committed Feb 20, 2023
    Configuration menu
    Copy the full SHA
    01817f9 View commit details
    Browse the repository at this point in the history

Commits on Feb 25, 2023

  1. Update readme

    @wagga40
    wagga40 committed Feb 25, 2023
    Configuration menu
    Copy the full SHA
    6a7e0bd View commit details
    Browse the repository at this point in the history

  2. Merge pull request #53 from wagga40/evtxtract 

    Add initial support for Evtxtract logs
Add a new CLI option to keep events as flattened JSON
Update readme
    @wagga40
    wagga40 authored Feb 25, 2023
    Configuration menu
    Copy the full SHA
    90c0300 View commit details
    Browse the repository at this point in the history

Commits on Apr 10, 2023

  1. Add support for XML logs (VirusTotal sandboxes, evtx_dump) 

    Update rulesets, readme
Removed a logic bug in file extension selection
    @wagga40
    wagga40 committed Apr 10, 2023
    Configuration menu
    Copy the full SHA
    8bf001c View commit details
    Browse the repository at this point in the history
Loading