Your download link is at the very bottom of the page... always.


Processed through Paypal
No account required.

Donate Bitcoin to this wallet:
 1KkUMXvQ2ko3xcJkzitB7WYgoW6m79WFfm
 Donate Ethereum to this wallet:
 0x40E56922F43637224935CDC35e2c96E0392A8505
 Donate Litecoin to this wallet:
 LLYAFEyqjH69gkyCEpRjXNyedRCWrVChfL

Buy our over-priced crap to help keep things running.
OlderGeeks 2025OG Dad CapNo Password


Follow us on BlueskyFollow us on XJoin our Facebook groupFollow us on InstagramOur RSS FeedJoin us on TikTokJoin us on LinkedIn


 Home » OlderGeeks.com Freeware Downloads » Searching Files   
Search Results
Files
  File Name Rating Downloads
Last Update/Developer
Chainsaw v2.11.0
Chainsaw v2.11.0 Rapidly Search and Hunt through Windows Event Logs Chainsaw provides a powerful ‘first-response’ capability to quickly identify threats within Windows forensic artifacts such as Event Logs and the MFT file. Chainsaw offers a generic and fast method of searching through event logs for keywords, and by identifying threats using built-in support for Sigma detection rules, and via custom Chainsaw detection rules. Features 🎯 Hunt for threats using Sigma detection rules and custom Chainsaw detection rules 🔍 Search and extract forensic artefacts by string matching, and regex patterns 📅 Create execution timelines by analysing Shimcache artefacts and enriching them with Amcache data 💡 Analyse the SRUM database and provide insights about it ⬇️ Dump the raw content of forensic artefacts (MFT, registry hives, ESE databases) ⚡ Lightning fast, written in rust, wrapping the EVTX parser library by @OBenamram 🪶 Clean and lightweight execution and output formats without unnecessary bloat 🔥 Document tagging (detection logic matching) provided by the TAU Engine Library 📑 Output results in a variety of formats, such as ASCII table format, CSV format, and JSON format 💻 Can be run on MacOS, Linux and Windows See the Wiki for usage instructions. Changes v2.11.0 Improvements to the MFT parser, allowing data streams to be extracted, decoded and written to disk. Decoded MFT Datastreams can now be queried via the Search command and via the Hunt Command. This download is for the Windows version (very bottom of page). All other download assets are below: MacOS: chainsaw_x86_64-apple-darwin.zip chainsaw_aarch64-apple-darwin.zip Linux: chainsaw_x86_64-unknown-linux-gnu.tar.gz chainsaw_aarch64-unknown-linux-gnu.tar.gz Other: chainsaw_all_platforms+rules+examples.zip Click here to visit the author's website.		 5/5 2,620 Jan 29, 2025
F-Secure Countercept
   
Showing rows 1 to 1 of 1 Showing Page 1 of 1  1 


OlderGeeks.com Copyright (c) 2025