A simple-to-use IR (incident response) case management tool for tracking and documenting investigations.
☆458Apr 29, 2026Updated 2 months ago
Alternatives and similar repositories for Kanvas
Users that are interested in Kanvas are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A preconfigured Velociraptor triage collector☆77Jun 29, 2026Updated last week
- VelociraptorMCP is a Model Context Protocol bridge for exposing LLMs to MCP clients.☆91Jun 28, 2026Updated last week
- A tool for fetching DFIR and other GitHub tools.☆29Aug 2, 2025Updated 11 months ago
- Modern honeypot supporting multiple services, realistic website cloning, and AI-powered features☆165Jun 1, 2026Updated last month
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆151Sep 21, 2024Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Menu for Thor scanner lite☆20Oct 24, 2025Updated 8 months ago
- ☆24Jun 29, 2026Updated last week
- A Model Context Protocol (MCP) server that integrates Volatility 3 memory forensics framework with Claude☆38Jul 7, 2025Updated last year
- Harness the power of Splunk for your investigations☆169Oct 11, 2025Updated 8 months ago
- CLI tools for forensic investigation of Windows artifacts☆354Jul 21, 2025Updated 11 months ago
- A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID☆637Jun 20, 2026Updated 2 weeks ago
- Tools for Incident Response and Malware Analysis☆11Feb 9, 2025Updated last year
- Linux Baseline and Forensic Triage Tool - BETA☆61Mar 10, 2026Updated 3 months ago
- UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It …☆1,395Jul 1, 2026Updated last week
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Captures network traffic app made in Rust.☆85Updated this week
- LotL RMM☆373Jun 26, 2026Updated last week
- This tool parses Windows EVTX logs to extract login and logout sessions from a security.evtx file. It uses a Tkinter GUI to let you selec…☆31Feb 22, 2025Updated last year
- Rigorously evaluating autonomous systems for cybersecurity at scale☆31Jul 9, 2025Updated last year
- PowerShell tools to help defenders hunt smarter, hunt harder.☆487Oct 29, 2025Updated 8 months ago
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆1,073Oct 5, 2023Updated 2 years ago
- KQLIntel is a browser-based tool that uses LLMs to convert threat intelligence reports into actionable Kusto Query Language (KQL) queries…☆31Aug 4, 2025Updated 11 months ago
- Capture. Detonate. Collect☆14Sep 20, 2024Updated last year
- Fork this repo! Do a Pull Request! As many times as you want! Learn the ins and outs of how to contribute to GitHub! Make your mistakes h…☆14Jun 21, 2024Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Parses USB connection artifacts from offline Registry hives☆108Feb 8, 2026Updated 5 months ago
- Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…☆286Jun 23, 2026Updated 2 weeks ago
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆59Jul 2, 2023Updated 3 years ago
- This project aims to compare and evaluate the telemetry of various EDR products.☆1,972Updated this week
- Bruteforce DPAPI encrypted MasterKey File from Windows Credentials Manager☆23Jan 4, 2025Updated last year
- MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs☆760Feb 1, 2026Updated 5 months ago
- A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.☆829Jun 29, 2026Updated last week
- ShellSweeping the evil.☆183Nov 25, 2024Updated last year
- This tool was created to address a common blind spot in corporate security: chat platforms. During penetration tests and red team engage…☆62Dec 21, 2025Updated 6 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- PowerShell-based Automation of Defender for Endpoint☆195Jul 3, 2025Updated last year
- Sniffing out well-known threat groups☆64Aug 13, 2024Updated last year
- Collaborative Incident Response platform☆1,518Updated this week
- Explore how Unix-like OS (Linux, BSD, macOS...) modify MACB timestamps and check against POSIX (non-)compliance☆19Oct 14, 2024Updated last year
- An open source platform to support analysts to organise their case and tasks☆144Jun 25, 2026Updated last week
- Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts…☆1,130Feb 25, 2026Updated 4 months ago
- A high-speed forensic timeline engine for Windows forensic artifact CSV output built for DFIR investigators. Quickly consolidate CSV outp…☆329Feb 26, 2026Updated 4 months ago