KANVAS is an incident response case management tool designed for investigators, featuring a user-friendly desktop interface built in Python. It streamlines workflows by enabling collaboration on spreadsheets, offering visualization tools for attack chains and incident timelines, and integrating various API insights for enhanced data analysis. Key functionalities include one-click data sanitization, MITRE mapping, and reporting capabilities, making it a comprehensive tool for handling cybersecurity incidents.

Gulp is a versatile log processing tool designed for efficient incident response, featuring a high-speed multiprocessing engine, data ingestion from various sources, and compatibility with OpenSearch and ECS. It supports Sigma rules for querying and includes collaborative features for team incidents, all built with Python for easy integration. Gulp is scalable and adaptable to growing teams and data needs.