Blauhaunt

A collection of detections for Panther SIEM with detailed setup instructions.

Blauhaunt: A Collection of Tools for Logon Event Analysis

Blauhaunt is a collection of tools designed for filtering and visualizing logon events. It aims to help users address the 'Cotton Eye Joe' question: 'Where did you come from, where did you go?' This tool is particularly useful in the context of Security Incidents and Threat Hunts.

It offers an interactive user interface

It offers an interactive user graph, a heatmap displaying user activities, and a timeline. This tool is specifically designed for experienced DFIR specialists.

The Tool is User-Friendly and Efficient

The tool is user-friendly and requires no backend setup. You can easily run it locally by cloning the repository and starting a simple HTTP server. Blauhaunt seamlessly integrates with a variety of tools and services, such as PowerShell Script, Velociraptor Artifact, and Defender 365 KUSTO Query. This makes it an essential resource for both threat hunting and incident response.

Other AI Tools

Rastrea2r

Cortex XSOAR is a comprehensive SOAR platform that automates and standardizes security processes for faster response times and increased team productivity.

Details

Raccine

Comprehensive endpoint protection solution providing advanced threat detection, proactive defense, and efficient management.

Details

Radiant Security

Automated Digital Forensics and Incident Response (DFIR) software for rapid incident response and intrusion investigations.

Details

pybof

GravityZone is a unified endpoint security and analytics platform that provides risk assessment, threat prevention, and incident response capabilities.

Details