Contextal Platform is a powerful open-source technology designed for advanced threat detection and intelligence. The platform’s contextual threat detection capabilities enable users to develop situational scenarios using ContexQL, a dedicated language designed with flexibility and performance in mind. These scenarios draw on global context, metadata, relationships, time, anomalies, content, and other factors to trigger specific actions. This layered, contextual approach allows for more adaptive
kenotaph-daemon is a tool for detecting a presence of network devices through means of a packet capture. Both Wired and Wireless networks are supported, assuming appropriate hardware is available. Targeted device is identified by a user defined Berkeley Packet Filter, either by its IP address or Hardware address, however the use of BPF allows for higher complexity. A packet capture is done in promiscuous mode, and/or in monitor mode. kenotaph-daemon is designed to be a 'daemon' program that run
|