Merge pull request #964 from Yamato-Security/updated-logon-summary-ti…

…tles updated logon-summary titles
Yamato-Security · Mar 17, 2023 · c3138b7 · c3138b7
2 parents 0bbcf81 + d51dff3
commit c3138b7
Show file tree

Hide file tree

Showing 7 changed files with 42 additions and 30 deletions.
diff --git a/CHANGELOG-Japanese.md b/CHANGELOG-Japanese.md
@@ -1,5 +1,11 @@
 # 変更点
 
+## 2.3.1 [2023/03/xx] "TMCIT Release-2"
+
+**Enhancements:**
+
+- `logon-summary`の見出しを更新した。 (@yamatosecurity)
+
 ## 2.3.0 [2023/03/16] "TMCIT Release"
 
 **新機能:**

diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,4 +1,10 @@
 # Changes
+
+## 2.3.1 [2023/03/xx] "TMCIT Release-2"
+
+**Enhancements:**
+
+- Updated `logon-summary` headers. (@yamatosecurity)
 
 ## 2.3.0 [2023/03/16] "TMCIT Release"
 

diff --git a/Cargo.lock b/Cargo.lock
diff --git a/Cargo.toml b/Cargo.toml
@@ -1,9 +1,9 @@
 [package]
 name = "hayabusa"
-version = "2.3.0"
+version = "2.3.1"
 authors = ["Yamato Security @SecurityYamato"]
 edition = "2021"
-rust-version = "1.66.0"
+rust-version = "1.68.0"
 include = ["src/**/*", "LICENSE.txt", "README.md", "CHANGELOG.md"]
 
 [dependencies]

diff --git a/rules b/rules
diff --git a/src/detections/configs.rs b/src/detections/configs.rs
@@ -472,7 +472,7 @@ fn check_thread_number(config: &Config) -> Option<usize> {
 pub enum Action {
  #[clap(
  author = "Yamato Security (https:/Yamato-Security/hayabusa) @SecurityYamato)",
- help_template = "\nHayabusa v2.3.0\n{author-with-newline}\n{usage-heading}\n hayabusa.exe csv-timeline <INPUT> [OPTIONS]\n\n{all-args}",
+ help_template = "\nHayabusa v2.3.1\n{author-with-newline}\n{usage-heading}\n hayabusa.exe csv-timeline <INPUT> [OPTIONS]\n\n{all-args}",
  term_width = 400,
  disable_help_flag = true
  )]
@@ -481,7 +481,7 @@ pub enum Action {
 
  #[clap(
  author = "Yamato Security (https:/Yamato-Security/hayabusa) @SecurityYamato)",
- help_template = "\nHayabusa v2.3.0\n{author-with-newline}\n{usage-heading}\n hayabusa.exe json-timeline <INPUT> [OPTIONS]\n\n{all-args}",
+ help_template = "\nHayabusa v2.3.1\n{author-with-newline}\n{usage-heading}\n hayabusa.exe json-timeline <INPUT> [OPTIONS]\n\n{all-args}",
  term_width = 400,
  disable_help_flag = true
  )]
@@ -490,7 +490,7 @@ pub enum Action {
 
  #[clap(
  author = "Yamato Security (https:/Yamato-Security/hayabusa) @SecurityYamato)",
- help_template = "\nHayabusa v2.3.0\n{author-with-newline}\n{usage-heading}\n hayabusa.exe logon-summary <INPUT> [OPTIONS]\n\n{all-args}",
+ help_template = "\nHayabusa v2.3.1\n{author-with-newline}\n{usage-heading}\n hayabusa.exe logon-summary <INPUT> [OPTIONS]\n\n{all-args}",
  term_width = 400,
  disable_help_flag = true
  )]
@@ -499,7 +499,7 @@ pub enum Action {
 
  #[clap(
  author = "Yamato Security (https:/Yamato-Security/hayabusa) @SecurityYamato)",
- help_template = "\nHayabusa v2.3.0\n{author-with-newline}\n{usage-heading}\n hayabusa.exe metrics <INPUT> [OPTIONS]\n\n{all-args}",
+ help_template = "\nHayabusa v2.3.1\n{author-with-newline}\n{usage-heading}\n hayabusa.exe metrics <INPUT> [OPTIONS]\n\n{all-args}",
  term_width = 400,
  disable_help_flag = true
  )]
@@ -508,7 +508,7 @@ pub enum Action {
 
  #[clap(
  author = "Yamato Security (https:/Yamato-Security/hayabusa) @SecurityYamato)",
- help_template = "\nHayabusa v2.3.0\n{author-with-newline}\n{usage-heading}\n hayabusa.exe pivot-keywords-list <INPUT> [OPTIONS]\n\n{all-args}",
+ help_template = "\nHayabusa v2.3.1\n{author-with-newline}\n{usage-heading}\n hayabusa.exe pivot-keywords-list <INPUT> [OPTIONS]\n\n{all-args}",
  term_width = 400,
  disable_help_flag = true
  )]
@@ -517,7 +517,7 @@ pub enum Action {
 
  #[clap(
  author = "Yamato Security (https:/Yamato-Security/hayabusa) @SecurityYamato)",
- help_template = "\nHayabusa v2.3.0\n{author-with-newline}\n{usage-heading}\n {usage}\n\n{all-args}",
+ help_template = "\nHayabusa v2.3.1\n{author-with-newline}\n{usage-heading}\n {usage}\n\n{all-args}",
  term_width = 400,
  disable_help_flag = true
  )]
@@ -526,7 +526,7 @@ pub enum Action {
 
  #[clap(
  author = "Yamato Security (https:/Yamato-Security/hayabusa) @SecurityYamato)",
- help_template = "\nHayabusa v2.3.0\n{author-with-newline}\n{usage-heading}\n {usage}\n\n{all-args}",
+ help_template = "\nHayabusa v2.3.1\n{author-with-newline}\n{usage-heading}\n {usage}\n\n{all-args}",
  term_width = 400,
  disable_help_flag = true
  )]
@@ -535,7 +535,7 @@ pub enum Action {
 
  #[clap(
  author = "Yamato Security (https:/Yamato-Security/hayabusa) @SecurityYamato)",
- help_template = "\nHayabusa v2.3.0\n{author-with-newline}\n{usage-heading}\n {usage}\n\n{all-args}",
+ help_template = "\nHayabusa v2.3.1\n{author-with-newline}\n{usage-heading}\n {usage}\n\n{all-args}",
  term_width = 400,
  disable_help_flag = true
  )]
@@ -1024,7 +1024,7 @@ pub struct JSONOutputOption {
 #[derive(Parser, Clone, Debug)]
 #[clap(
  author = "Yamato Security (https:/Yamato-Security/hayabusa) @SecurityYamato)",
- help_template = "\nHayabusa 2.3.0\n{author-with-newline}\n{usage-heading}\n hayabusa.exe <COMMAND> [OPTIONS]\n hayabusa.exe help <COMMAND>\n\n{all-args}{options}",
+ help_template = "\nHayabusa 2.3.1\n{author-with-newline}\n{usage-heading}\n hayabusa.exe <COMMAND> [OPTIONS]\n hayabusa.exe help <COMMAND>\n\n{all-args}{options}",
  term_width = 400,
  disable_help_flag = true
 )]

diff --git a/src/timeline/timelines.rs b/src/timeline/timelines.rs
@@ -259,11 +259,11 @@ impl Timeline {
  fn tm_loginstats_tb_dsp_msg(&self, logon_res: &str, output: &Option<PathBuf>) {
  let header = vec![
  logon_res,
- "User",
- "Hostname",
+ "Target Account",
+ "Target Computer",
  "Logon Type",
  "Source Computer",
- "Source Ip",
+ "Source IP Address",
  ];
  let target;
  let mut wtr = if let Some(csv_path) = output {