kunai-project / kunai
Threat-hunting tool for Linux
☆819Updated 2 weeks ago
Alternatives and similar repositories for kunai:
Users that are interested in kunai are comparing it to the libraries listed below
- Deep Linux runtime visibility meets Wireshark☆287Updated last week
- Bitor Scanning Software☆369Updated last week
- BLint is a Binary Linter to check the security properties, and capabilities in your executables. Since v2, blint is also an SBOM generato…☆360Updated last week
- Open Breach and Attack Simulation & Security Validation Platform☆990Updated this week
- Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time thre…☆635Updated 3 weeks ago
- Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streaml…☆242Updated this week
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆279Updated this week
- A repo to conduct vulnerability enrichment.☆610Updated this week
- DECeption with Evaluative Integrated Validation Engine (DECEIVE): Let an LLM do all the hard honeypot work!☆235Updated last month
- MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs☆723Updated 2 weeks ago
- SOCFortress CoPilot��☆270Updated last week
- Logging Made Easy (LME) is a no cost, open source platform that centralizes log collection, enhances threat detection, and enables real-…☆995Updated this week
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆401Updated 2 weeks ago
- A rewrite of YARA in Rust.☆738Updated last week
- Linux Security and Monitoring Scripts☆322Updated 6 months ago
- Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!☆718Updated last month
- AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE…☆1,116Updated this week
- Enterprise-ready SIEM, SOAR and Compliance powered by real-time correlation and threat intelligence.☆265Updated this week
- Sysmon for Linux☆1,866Updated 3 weeks ago
- Transform Linux Audit logs for SIEM usage☆761Updated 3 weeks ago
- Pen Test Report Generation and Assessment Collaboration☆512Updated last month
- ⚡️ Catalyst is a self-hosted, open source incident response platform and ticket system that helps to automate alert handling and incident…☆388Updated this week
- A standard for reducing log volume without sacrificing analytical capability☆203Updated last month
- Collaborative Incident Response platform☆1,176Updated this week
- Analyze pcaps with Zeek and a Grafana Dashboard☆175Updated 10 months ago
- Galah: An LLM-powered web honeypot.☆529Updated 6 months ago
- RansomLord is a proof-of-concept Anti-Ransomware exploitation tool that automates the creation of PE files, used to compromise ransomware…☆507Updated 4 months ago
- practical toolkit for cybersecurity and IT professionals. It features a detailed Linux cheatsheet for incident response☆397Updated last year
- How to setup a honeypot with an IDS, ELK and TLS traffic inspection☆158Updated 2 years ago
- A centralized and enhanced memory analysis platform☆453Updated 2 months ago