Skip to content

Releases: NextronSystems/evtx-baseline

evtx-baseline v0.8.4

11 Mar 13:26
@phantinuss phantinuss
v0.8.4
394bd48
This commit was signed with the committer’s verified signature.
phantinuss
GPG key ID: 2228112A3EDDDA39
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
evtx-baseline v0.8.4 Latest
Latest
  • fix a bug in extx-sigma-checker where the value field wasn't parsed correctly if other attributes existed
Assets 13
  • all-evtx.tgz
    sha256:4bbdd0db6b5dbd5025caf338eec90e2c041b6538911cf2ae40313580c24d45b0
    592 MB 2026-03-11T13:20:13Z
  • evtx-sigma-checker
    sha256:fbd6d71ef288e91cc0bcf09fd5b19ab7293836005f88e86edd7561f9d2b84566
    5.62 MB 2026-03-11T13:20:11Z
  • evtx-sigma-checker-darwin
    sha256:7d57ab284380b2fcd51d3949a078521f7f316a1ec5f4b9265e4679f99419cce2
    5.55 MB 2026-03-11T13:20:09Z
  • evtx-sigma-checker-win
    sha256:19c58ec869b1adc48184526be193ba177ed310335628fc29fb765b0f3ca0ad5b
    6.8 MB 2026-03-11T13:20:06Z
  • win10-client.tgz
    sha256:d48f1b328d48db6c6dfaa9b6e232dbb454d93e833c6e1248efc0faf690b6808e
    67.6 MB 2026-03-11T13:24:56Z
  • win11-client-2023.tgz
    sha256:739079e63fc8a81d0b20eff6ee76b2f104a0cf6df115802c9bca128417c1e117
    162 MB 2026-03-11T13:23:44Z
  • win11-client.tgz
    sha256:6caab8391ac3cf7135e2fd5f545c7b116a2b445ec061f83d05873f8081ff0202
    127 MB 2026-03-11T13:22:37Z
  • win2022-0-20348-azure.tgz
    sha256:4b3337d857f8e03273f831ad25db75e02a5a8b26b5ec14bb63727459250a5a73
    137 MB 2026-03-11T13:23:09Z
  • win2022-ad.tgz
    sha256:dde89557c8dd19756d1fb4797f566aaa94509847c2740968bf04b5bea0b34ec1
    62.9 MB 2026-03-11T13:24:40Z
  • win2022-evtx.tgz
    sha256:29406757f9761b56372d40550c9bef4eb2bf82ec21ba15115910742b03c4aab2
    26.2 MB 2026-03-11T13:25:13Z
  • Source code (zip)
    2023-11-20T13:35:19Z
  • Source code (tar.gz)
    2023-11-20T13:35:19Z

evtx-baseline v0.8.3

17 Dec 12:59
@phantinuss phantinuss
v0.8.3
394bd48
This commit was signed with the committer’s verified signature.
phantinuss
GPG key ID: 2228112A3EDDDA39
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
evtx-baseline v0.8.3
  • fix a bug in evtx-sigma-checker where the |windash modifier wasn't applied correctly in all cases.
Loading

evtx-baseline v0.8.2

06 Oct 10:32
@phantinuss phantinuss
v0.8.2
394bd48
This commit was signed with the committer’s verified signature.
phantinuss
GPG key ID: 2228112A3EDDDA39
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
evtx-baseline v0.8.2
  • fix a bug in evtx-sigma-checker that only read the first folder for rules or evtx files if multiple --evtx-path or --rule-path were supplied
Loading

evtx-baseline v0.8.1

16 May 08:25
@phantinuss phantinuss
v0.8.1
394bd48
This commit was signed with the committer’s verified signature.
phantinuss
GPG key ID: 2228112A3EDDDA39
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
evtx-baseline v0.8.1
  • evtx-sigma-checker now only outputs the name of the currently scanned evtx file on interactive shells (i.e. less noisy output in build jobs)
Loading

evtx-baseline v0.8

21 Nov 07:45
@phantinuss phantinuss
v0.8
394bd48
This commit was signed with the committer’s verified signature.
phantinuss
GPG key ID: 2228112A3EDDDA39
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
evtx-baseline v0.8
  • New Windows 11 event logs thanks to @nasbench
  • New evtx-sigma-checker version with some bug fixes and improvements (#6 )

Contributors

nasbench
Loading

evtx-baseline v0.7

20 Sep 11:20
@phantinuss phantinuss
v0.7
a25227d
This commit was signed with the committer’s verified signature.
phantinuss
GPG key ID: 2228112A3EDDDA39
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
evtx-baseline v0.7
  • New Windows Server 2022.0.20348 from an Azure VM thanks to @Neo23x0
  • New archive containing all evtx files called all-evtx.tgz
  • New evtx-sigma-checker version with some bug fixes

Contributors

Neo23x0
Loading

evtx-baseline v0.6

20 Apr 09:11
@phantinuss phantinuss
v0.6
1c108e9
This commit was signed with the committer’s verified signature.
phantinuss
GPG key ID: 2228112A3EDDDA39
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
evtx-baseline v0.6
  • New Windows Server 2022 Active Directory / Domain Controller baseline thanks to @frack113
  • New evtx-sigma-checker windows x64 binary
  • Huge performance improvement of evtx-sigma-checker runtime (around half)

Contributors

frack113
Loading

evtx-baseline v0.5

07 Apr 08:04
@phantinuss phantinuss
v0.5
29299b3
This commit was signed with the committer’s verified signature.
phantinuss
GPG key ID: 2228112A3EDDDA39
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
evtx-baseline v0.5
  • New Windows Server 2022 baseline thanks to @Neo23x0

Contributors

Neo23x0
Loading

evtx-baseline v0.4

04 Apr 13:58
@phantinuss phantinuss
v0.4
58ab681
This commit was signed with the committer’s verified signature.
phantinuss
GPG key ID: 2228112A3EDDDA39
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
evtx-baseline v0.4
  • New Windows 7 32-bit baseline thanks to @pH-T

Contributors

pH-T
Loading

evtx-baseline v0.3

07 Mar 09:00
@phantinuss phantinuss
v0.3
5817e4f
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
evtx-baseline v0.3
  • Update evtx-sigma-checker: Containing new Sigma value modifiers [utf16(le|be)?, lt(e)?, gt(e)?]
  • New Windows 11 baseline thanks to @frack113

Contributors

frack113
Loading