Skip to content

v0.3.0-alpha.1

Pre-release
Pre-release
Compare
Choose a tag to compare
@qjerome qjerome released this 12 Sep 15:31
· 144 commits to main since this release
c04449d

New Features

  • new CLI
  • new kill event generated when a process attempt at killing another
  • harden mode: prevent kunai from being tampered with by other processes
  • action handling: detection rules can be configured with actions to take after detection
    • kill: kill the process triggering the detection rules
    • scan-files: scan any file path contained in event with Yara rules
  • new file_scan event: generated when a scan-files action is run
  • IoC now contain severity information: allow to attribute more or less importance to some IoC sources/types

Notable fix

  • High memory consumption on the long run or when kunai runs under stress conditions

What's Changed

Full Changelog: v0.2.4...v0.3.0-alpha.1