Blauhaunt Logo

Blauhaunt

0
Free
Visit Website

Blauhaunt is a tool collection for filtering and visualizing logon events, designed to help answer the 'Cotton Eye Joe' question (Where did you come from where did you go) in Security Incidents and Threat Hunts. It provides an interactive user graph, heatmap of user activities, and timeline, and is designed for experienced DFIR specialists. The tool is easy to use, with no backend, and can be run locally by cloning the repository and running a simple HTTP server. Blauhaunt integrates with various tools and services, including PowerShell Script, Velociraptor Artifact, and Defender 365 KUSTO Query, making it a valuable resource for threat hunting and incident response.

FEATURES

ALTERNATIVES

Elastic is a search-powered AI company that enables users to find answers from all data in real-time at scale.

Commercial

Cybersecurity project for security monitoring of Node.js applications.

Free

A compliant audit log tool that provides a searchable, exportable record of read/write events.

Free

A method for log volume reduction without losing analytical capability.

Free

A tool that collects and displays user activity and system events on a Windows system.

Free

Investigate malicious logons by visualizing and analyzing Windows Active Directory event logs with LogonTracer.

Free

Apache Metron is a centralized tool for security monitoring and analysis that integrates various open-source big data technologies.

Free

Track user activity and API usage on AWS and in hybrid and multicloud environments.

Free