Blauhaunt Logo

Blauhaunt

0
Free
Visit Website

Blauhaunt is a tool collection for filtering and visualizing logon events, designed to help answer the 'Cotton Eye Joe' question (Where did you come from where did you go) in Security Incidents and Threat Hunts. It provides an interactive user graph, heatmap of user activities, and timeline, and is designed for experienced DFIR specialists. The tool is easy to use, with no backend, and can be run locally by cloning the repository and running a simple HTTP server. Blauhaunt integrates with various tools and services, including PowerShell Script, Velociraptor Artifact, and Defender 365 KUSTO Query, making it a valuable resource for threat hunting and incident response.

FEATURES

ALTERNATIVES

Serverless, real-time data analysis framework for incident detection and response.

Free

Python library and command line tools for log visualization with interactive plots.

Free

Access a repository of Analytic Stories and security guides mapped to industry frameworks, with Splunk searches, machine learning algorithms, and playbooks for threat detection and response.

Free

A toolset for collecting and processing netflow/ipfix and sflow data from netflow/sflow compatible devices.

Free

Sysdig is a system visibility tool with native container support.

Free

A pure Python parser for Windows Event Log files with access to File and Chunk headers, record templates, and event entries.

Free

Democratizing graph-based security analysis by collecting assets and relationships from services and systems into an intuitive graph view.

Free

Elastic is a search-powered AI company that enables users to find answers from all data in real-time at scale.

Commercial