A simple-to-use IR (incident response) case management tool for tracking and documenting investigations.
☆447Feb 13, 2026Updated 2 months ago
Alternatives and similar repositories for Kanvas
Users that are interested in Kanvas are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A preconfigured Velociraptor triage collector☆76Mar 30, 2026Updated 2 weeks ago
- VelociraptorMCP is a Model Context Protocol bridge for exposing LLMs to MCP clients.☆75Aug 20, 2025Updated 7 months ago
- A tool for fetching DFIR and other GitHub tools.☆27Aug 2, 2025Updated 8 months ago
- Modern honeypot supporting multiple services, realistic website cloning, and AI-powered features☆161Mar 29, 2026Updated 2 weeks ago
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆151Sep 21, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Menu for Thor scanner lite☆20Oct 24, 2025Updated 5 months ago
- A Model Context Protocol (MCP) server that integrates Volatility 3 memory forensics framework with Claude☆35Jul 7, 2025Updated 9 months ago
- ☆23Mar 25, 2026Updated 3 weeks ago
- CLI tools for forensic investigation of Windows artifacts☆350Jul 21, 2025Updated 8 months ago
- Harness the power of Splunk for your investigations☆161Oct 11, 2025Updated 6 months ago
- A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID☆583Dec 6, 2025Updated 4 months ago
- Tools for Incident Response and Malware Analysis☆11Feb 9, 2025Updated last year
- Linux Baseline and Forensic Triage Tool - BETA☆58Mar 10, 2026Updated last month
- UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It …☆1,295Updated this week
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- LotL RMM☆330Mar 24, 2026Updated 3 weeks ago
- Captures network traffic app made in Rust.☆79Apr 10, 2026Updated last week
- This tool parses Windows EVTX logs to extract login and logout sessions from a security.evtx file. It uses a Tkinter GUI to let you selec…☆31Feb 22, 2025Updated last year
- Rigorously evaluating autonomous systems for cybersecurity at scale☆30Jul 9, 2025Updated 9 months ago
- PowerShell tools to help defenders hunt smarter, hunt harder.☆479Oct 29, 2025Updated 5 months ago
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆1,070Oct 5, 2023Updated 2 years ago
- KQLIntel is a browser-based tool that uses LLMs to convert threat intelligence reports into actionable Kusto Query Language (KQL) queries…☆30Aug 4, 2025Updated 8 months ago
- Capture. Detonate. Collect☆14Sep 20, 2024Updated last year
- Fork this repo! Do a Pull Request! As many times as you want! Learn the ins and outs of how to contribute to GitHub! Make your mistakes h…☆14Jun 21, 2024Updated last year
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Parses USB connection artifacts from offline Registry hives☆107Feb 8, 2026Updated 2 months ago
- Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…☆280Dec 20, 2025Updated 3 months ago
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆57Jul 2, 2023Updated 2 years ago
- This project aims to compare and evaluate the telemetry of various EDR products.☆1,944Mar 26, 2026Updated 3 weeks ago
- Bruteforce DPAPI encrypted MasterKey File from Windows Credentials Manager☆23Jan 4, 2025Updated last year
- MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs☆758Feb 1, 2026Updated 2 months ago
- AI-powered phishing & threat-analysis platform to automatically inspect, classify, and report suspicious emails, files, URLs, IPs, and ha…☆81Apr 8, 2026Updated last week
- A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.☆789Mar 25, 2026Updated 3 weeks ago
- Takajō (鷹匠) is a Hayabusa results analyzer.☆156Apr 6, 2026Updated last week
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ShellSweeping the evil.☆181Nov 25, 2024Updated last year
- This tool was created to address a common blind spot in corporate security: chat platforms. During penetration tests and red team engage…☆56Dec 21, 2025Updated 3 months ago
- PowerShell-based Automation of Defender for Endpoint☆191Jul 3, 2025Updated 9 months ago
- Collaborative Incident Response platform☆1,465Apr 8, 2026Updated last week
- Sniffing out well-known threat groups☆64Aug 13, 2024Updated last year
- A high-speed forensic timeline engine for Windows forensic artifact CSV output built for DFIR investigators. Quickly consolidate CSV outp…☆316Feb 26, 2026Updated last month
- Explore how Unix-like OS (Linux, BSD, macOS...) modify MACB timestamps and check against POSIX (non-)compliance☆18Oct 14, 2024Updated last year