Blauhaunt
Logon analyzer
A tool collection for analyzing and visualizing logon events to help answer security-related questions
A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you come from where did you go) in Security Incidents and Threat Hunts
161 stars
4 watching
11 forks
Language: JavaScript
last commit: 8 days ago
Linked from 1 awesome list
analysiscyber-crimedfirforensicsgraphincident-responseinvestigationsecurityvelociraptor
cugu/awesome-forensicsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 jensvoid/lorg | A tool to analyze and detect security incidents in web application logs | 209 |
 dogoncouch/logdissect | Analyzes log files and other data from various sources and formats. | 148 |
 thiber-org/userline | Automates analysis of Windows Security Events to identify user logon relations | 240 |
 jpcertcc/sysmonsearch | Analyzes Sysmon event logs to detect suspicious activity and visualize process and network correlations. | 417 |
 bkoelman/csharpguidelinesanalyzer | A tool that analyzes C# code against predefined coding guidelines and reports diagnostics | 145 |
| dogoncouch/logesp | A security-focused application built with Python Django to manage and analyze log data from various sources. | 197 |
 googlecloudplatform/security-analytics | Provides a set of community-driven security analytics queries and rules for Google Cloud log analysis | 325 |
| jpcertcc/toolanalysisresultsheet | An HTML-based tool for analyzing and visualizing log data from Windows execution of malicious tools to detect lateral movement. | 345 |
 klks/checksec | A tool to analyze security settings in x64dbg | 125 |
 the-login/dns-analyzer | A tool to analyze DNS vulnerabilities in web applications and identify potential security risks. | 94 |
 evilsocket/takuan | A system service that analyzes logs to identify malicious activity and maintains a blacklist of known cyber offenders. | 84 |
 sonarsource/sonar-dotnet | Analyzes C# and VB.NET code for quality and security issues | 796 |
 chrisandoryan/nethive-project | An SIEM system that uses machine learning and CVSS measurements to detect security threats. | 3 |
 sans-blue-team/deepbluecli | A PowerShell module for analyzing Windows event logs to detect and respond to potential security threats. | 2,188 |
 microsoft/infersharp | A tool that analyzes C# code for potential issues such as null pointer dereferences and resource leaks to help detect security vulnerabilities. | 732 |