Rapidly Search and Hunt through Windows Event Logs
Chainsaw provides a powerful ‘first-response’ capability to quickly identify threats within Windows event logs. It offers a generic and fast method of searching through event logs for keywords, and by identifying threats using built-in detection logic and via support for Sigma detection rules.
🔍 Search and extract event log records by event IDs, string matching, and regex patterns
Search and extract event log records by event IDs, s…