Blauhaunt Logo

Blauhaunt

0
Free
Visit Website

Blauhaunt is a tool collection for filtering and visualizing logon events, designed to help answer the 'Cotton Eye Joe' question (Where did you come from where did you go) in Security Incidents and Threat Hunts. It provides an interactive user graph, heatmap of user activities, and timeline, and is designed for experienced DFIR specialists. The tool is easy to use, with no backend, and can be run locally by cloning the repository and running a simple HTTP server. Blauhaunt integrates with various tools and services, including PowerShell Script, Velociraptor Artifact, and Defender 365 KUSTO Query, making it a valuable resource for threat hunting and incident response.

FEATURES

ALTERNATIVES

A compliant audit log tool that provides a searchable, exportable record of read/write events.

Free

Track user activity and API usage on AWS and in hybrid and multicloud environments.

Free

Cybersecurity project for security monitoring of Node.js applications.

Free

A Security Information and Event Management (SIEM) system with a focus on security and minimalism.

Free

HoneyView is a tool for analyzing honeyd logfiles graphically and textually.

Free

A cloud-native SIEM platform that provides security analytics, intuitive workflow, and simplified incident response to help security teams defend against cyber threats.

Commercial

Apache Metron is a centralized tool for security monitoring and analysis that integrates various open-source big data technologies.

Free

AlienVault OSSIM provides an all-in-one security management solution with asset discovery, vulnerability assessment, and SIEM capabilities.

Free