WithSecureLabs / KanvasLinks
A simple-to-use IR (incident response) case management tool for tracking and documenting investigations.
☆405Updated last month
Alternatives and similar repositories for Kanvas
Users that are interested in Kanvas are comparing it to the libraries listed below
Sorting:
- A simple application that extracts your IoCs from garbage input and checks their reputation using multiple CTI services.☆471Updated this week
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆412Updated last week
- Playbook-NG is a stateless web-based application used to match incident findings with countermeasures for adversary containment and evict…☆152Updated 3 weeks ago
- Repo to hold wazuh manager mcp server☆65Updated last month
- ☆218Updated last year
- A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…☆236Updated this week
- Modern honeypot supporting multiple services, realistic website cloning, and AI-powered features☆144Updated 3 weeks ago
- A security analysis tool that identifies DNS queries made by browser extensions, empowering security teams to detect and investigate susp…☆184Updated 9 months ago
- CyberSecurity BLUE TEAM containerized platform that brings together open-source tools for SIEM, DFIR, CTI, SOAR, and Network Analysis☆369Updated last month
- SOCFortress CoPilot☆391Updated 2 weeks ago
- MCP Server for Wazuh SIEM☆138Updated 4 months ago
- DECeption with Evaluative Integrated Validation Engine (DECEIVE): Let an LLM do all the hard honeypot work!☆267Updated 5 months ago
- PowerShell tools to help defenders hunt smarter, hunt harder.☆444Updated 2 weeks ago
- An index of publicly available and open-source threat detection rulesets.☆129Updated 7 months ago
- Parse and analyze a Windows Amcache.hve registry hive, VirusTotal integration.☆103Updated 3 months ago
- Have you ever wanted to search a link or IP address on multiple OSINT pages at once?☆59Updated 4 months ago
- LotL RMM☆256Updated 3 weeks ago
- An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed.☆200Updated this week
- CloudGrappler is a purpose-built tool designed for effortless querying of high-fidelity and single-event detections related to well-known…☆264Updated 2 months ago
- Cybether - A modern, open-source Cybersecurity Governance, Risk, and Compliance (GRC) dashboard☆83Updated 2 months ago
- MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs☆744Updated 3 months ago
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆30Updated last year
- Super light, super fast, unlimited search idea☆25Updated 3 months ago
- A production ready Dockered MISP☆290Updated this week
- Generate MITRE ATT&CK and D3FEND from a list of CVEs. Database with CVE, CWE, CAPEC, MITRE ATT&CK and D3FEND Techniques data is updated d…☆246Updated this week
- Open Source Security Operations Center Documentation☆201Updated 4 months ago
- Mapping of open-source detection rules and atomic tests.☆185Updated 10 months ago
- PurpleLab is an efficient and readily deployable lab solution, providing a swift setup for cybersecurity professionals to test detection…☆717Updated 3 months ago
- Open Source SIEM Stack☆129Updated last month
- ☆116Updated 5 months ago