Kunai
0
Free
Kunai is a Linux-based system monitoring tool that provides real-time monitoring and threat hunting capabilities. It collects and correlates system events, allowing for advanced threat detection and incident response. Kunai is designed to work seamlessly with Linux namespaces and container technologies, providing visibility into containerized environments. Kunai's kernel components are written in eBPF and run as probes, collecting relevant information for security monitoring. The collected data is then passed to a userland program for re-ordering, enriching, and correlating events. Kunai is built using Rust and the Aya library, and is available as a standalone binary that includes both the eBPF probes and the userland program. Kunai provides a range of features, including event sorting, on-host correlation, and event enrichment. It also supports Linux namespaces and container technologies, allowing for monitoring of containerized environments. Kunai is designed to be highly customizable, with a focus on ease of use and scalability. Kunai is available under an open-source license and is compatible with a wide range of Linux distributions.
FEATURES
The author has not provided features for this tool yet. If you are the author, please sign in or claim the tool to add features by clicking the icon above.
ALTERNATIVES
Symantec Enterprise Cloud provides comprehensive cybersecurity for large enterprises, with a focus on data-centric hybrid security and innovation in threat and data protection.
Commercial
CrowdStrike Falcon Insight XDR is an AI-powered endpoint detection and response solution that provides comprehensive protection, visibility, and automated response capabilities.
Commercial
Monitor WMI consumers and processes for potential malicious activity
Acronis Cyber Protect is an integrated cybersecurity and data protection platform that provides comprehensive protection for businesses, service providers, and individuals.
Commercial
Comprehensive business security suite with enhanced features to protect against malware, phishing, and advanced threats.
Android Loadable Kernel Modules for reversing and debugging on controlled systems/emulators.
MetaDefender Cloud offers advanced threat prevention using technologies like Multiscanning, Deep CDR, and Sandbox.
Open-source platform for IT and security teams with flexibility in feature usage and support for various platforms.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Commercial
Resources
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Free
Security Operations
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Free
Blogs and News
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Commercial
Cloud Security
RoboShadow
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Commercial
Vulnerability Management
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.
Commercial
AI Security