A simple-to-use IR (incident response) case management tool for tracking and documenting investigations.
☆441Feb 13, 2026Updated last month
Alternatives and similar repositories for Kanvas
Users that are interested in Kanvas are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A preconfigured Velociraptor triage collector☆76Mar 2, 2026Updated 3 weeks ago
- VelociraptorMCP is a Model Context Protocol bridge for exposing LLMs to MCP clients.☆73Aug 20, 2025Updated 7 months ago
- Modern honeypot supporting multiple services, realistic website cloning, and AI-powered features☆156Dec 2, 2025Updated 3 months ago
- A tool for fetching DFIR and other GitHub tools.☆27Aug 2, 2025Updated 7 months ago
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆151Sep 21, 2024Updated last year
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Menu for Thor scanner lite☆20Oct 24, 2025Updated 5 months ago
- A Model Context Protocol (MCP) server that integrates Volatility 3 memory forensics framework with Claude☆34Jul 7, 2025Updated 8 months ago
- ☆22Updated this week
- CLI tools for forensic investigation of Windows artifacts☆349Jul 21, 2025Updated 8 months ago
- A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID☆581Dec 6, 2025Updated 3 months ago
- Tools for Incident Response and Malware Analysis☆11Feb 9, 2025Updated last year
- Linux Baseline and Forensic Triage Tool - BETA☆58Mar 10, 2026Updated 2 weeks ago
- UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It …☆1,263Mar 14, 2026Updated last week
- LotL RMM☆322Updated this week
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Captures network traffic app made in Rust.☆76Mar 6, 2026Updated 3 weeks ago
- This tool parses Windows EVTX logs to extract login and logout sessions from a security.evtx file. It uses a Tkinter GUI to let you selec…☆31Feb 22, 2025Updated last year
- Rigorously evaluating autonomous systems for cybersecurity at scale☆30Jul 9, 2025Updated 8 months ago
- PowerShell tools to help defenders hunt smarter, hunt harder.☆478Oct 29, 2025Updated 4 months ago
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆1,064Oct 5, 2023Updated 2 years ago
- KQLIntel is a browser-based tool that uses LLMs to convert threat intelligence reports into actionable Kusto Query Language (KQL) queries…☆29Aug 4, 2025Updated 7 months ago
- Capture. Detonate. Collect☆14Sep 20, 2024Updated last year
- Fork this repo! Do a Pull Request! As many times as you want! Learn the ins and outs of how to contribute to GitHub! Make your mistakes h…☆14Jun 21, 2024Updated last year
- Parses USB connection artifacts from offline Registry hives☆107Feb 8, 2026Updated last month
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…☆280Dec 20, 2025Updated 3 months ago
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆56Jul 2, 2023Updated 2 years ago
- This project aims to compare and evaluate the telemetry of various EDR products.☆1,934Jan 20, 2026Updated 2 months ago
- Bruteforce DPAPI encrypted MasterKey File from Windows Credentials Manager☆23Jan 4, 2025Updated last year
- MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs☆757Feb 1, 2026Updated last month
- AI-powered phishing & threat-analysis platform to automatically inspect, classify, and report suspicious emails, files, URLs, IPs, and ha…☆78Mar 20, 2026Updated last week
- A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.☆776Mar 3, 2026Updated 3 weeks ago
- Takajō (鷹匠) is a Hayabusa results analyzer.☆154Feb 23, 2026Updated last month
- ShellSweeping the evil.☆181Nov 25, 2024Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- Harness the power of Splunk for your investigations☆159Oct 11, 2025Updated 5 months ago
- PowerShell-based Automation of Defender for Endpoint☆190Jul 3, 2025Updated 8 months ago
- Collaborative Incident Response platform☆1,446Feb 16, 2026Updated last month
- A high-speed forensic timeline engine for Windows forensic artifact CSV output built for DFIR investigators. Quickly consolidate CSV outp…☆309Feb 26, 2026Updated last month
- This tool was created to address a common blind spot in corporate security: chat platforms. During penetration tests and red team engage…☆56Dec 21, 2025Updated 3 months ago
- Sniffing out well-known threat groups☆64Aug 13, 2024Updated last year
- An open source platform to support analysts to organise their case and tasks☆129Updated this week