kunai-project / kunaiLinks
Threat-hunting tool for Linux
☆1,013Updated last week
Alternatives and similar repositories for kunai
Users that are interested in kunai are comparing it to the libraries listed below
Sorting:
- A scalable file analysis and data generation platform that allows users to easily orchestrate arbitrary docker/vm/shell tools at scale.☆960Updated 2 weeks ago
- Deep Linux runtime visibility meets Wireshark☆295Updated last week
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆414Updated last week
- A rewrite of YARA in Rust.☆917Updated this week
- Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streaml…☆402Updated this week
- MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs☆744Updated 3 months ago
- blint is a Binary Linter that checks the security properties and capabilities of your executables. It can also generate a Software Bill-o…☆418Updated this week
- Open Adversarial Exposure Validation Platform☆1,435Updated last week
- A modular vulnerability scanner with automatic report generation capabilities.☆974Updated this week
- Transform Linux Audit logs for SIEM usage☆801Updated last month
- A simple-to-use IR (incident response) case management tool for tracking and documenting investigations.☆406Updated last month
- Enterprise-ready SIEM, SOAR and Compliance powered by real-time correlation and threat intelligence.☆359Updated this week
- ⚡️ Catalyst is a self-hosted, open source incident response platform and ticket system that helps to automate alert handling and incident…☆489Updated 3 weeks ago
- Galah: An LLM-powered web honeypot.☆613Updated 3 months ago
- Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time thre…☆679Updated last month
- UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It …☆1,181Updated last week
- DECeption with Evaluative Integrated Validation Engine (DECEIVE): Let an LLM do all the hard honeypot work!☆268Updated 5 months ago
- A centralized and enhanced memory analysis platform☆508Updated 4 months ago
- A repo to conduct vulnerability enrichment.☆696Updated this week
- Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts…☆1,047Updated last month
- A production ready Dockered MISP☆290Updated this week
- SharpEye: Advanced Linux Intrusion Detection and Threat Hunting System☆161Updated 5 months ago
- Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!☆1,135Updated 3 weeks ago
- A website and framework for testing NIDS detection☆299Updated 4 months ago
- Collaborative Incident Response platform☆1,311Updated this week
- A simple application that extracts your IoCs from garbage input and checks their reputation using multiple CTI services.☆471Updated last week
- SOCFortress CoPilot☆397Updated this week
- Sysmon for Linux☆2,003Updated 4 months ago
- practical toolkit for cybersecurity and IT professionals. It features a detailed Linux cheatsheet for incident response☆402Updated last year
- MITRE Caldera™ for OT Plugins & Capabilities☆230Updated this week