kunai-project / kunai
Threat-hunting tool for Linux
☆835Updated this week
Alternatives and similar repositories for kunai:
Users that are interested in kunai are comparing it to the libraries listed below
- Deep Linux runtime visibility meets Wireshark☆289Updated 3 weeks ago
- MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs☆730Updated last month
- Open Adversary Exposure Validation Platform☆1,014Updated this week
- A rewrite of YARA in Rust.☆753Updated last week
- BLint is a Binary Linter to check the security properties, and capabilities in your executables. Since v2, blint is also an SBOM generato…☆363Updated 2 weeks ago
- Transform Linux Audit logs for SIEM usage☆763Updated this week
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆294Updated this week
- UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It …☆962Updated 2 weeks ago
- Bitor Scanning Software☆376Updated last month
- Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time thre…☆639Updated last month
- Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streaml…☆268Updated this week
- ⚡️ Catalyst is a self-hosted, open source incident response platform and ticket system that helps to automate alert handling and incident…☆394Updated 3 weeks ago
- Pen Test Report Generation and Assessment Collaboration☆520Updated this week
- SOCFortress CoPilot☆275Updated this week
- Logging Made Easy (LME) is a no cost, open source platform that centralizes log collection, enhances threat detection, and enables real-…☆1,023Updated this week
- A centralized and enhanced memory analysis platform☆459Updated 3 months ago
- PurpleLab is an efficient and readily deployable lab solution, providing a swift setup for cybersecurity professionals to test detection…☆664Updated this week
- Linux Security and Monitoring Scripts☆322Updated 7 months ago
- Collaborative Incident Response platform☆1,186Updated this week
- Enterprise-ready SIEM, SOAR and Compliance powered by real-time correlation and threat intelligence.☆270Updated this week
- A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…☆209Updated last week
- Customizable Linux Persistence Tool for Security Research and Detection Engineering.☆650Updated 2 months ago
- Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts…☆987Updated last month
- DECeption with Evaluative Integrated Validation Engine (DECEIVE): Let an LLM do all the hard honeypot work!☆241Updated 2 weeks ago
- Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.☆2,596Updated 2 weeks ago
- Analyze pcaps with Zeek and a Grafana Dashboard☆174Updated 11 months ago
- ☆259Updated 5 months ago
- Production-ready detection & response queries for osquery☆567Updated this week
- Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/o…☆722Updated this week
- Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.☆175Updated last week