Free and open source log management
#
siem
Repositories 62
MozDef: Mozilla Enterprise Defense Platform
Python
Updated Apr 30, 2019
Generic Signature Format for SIEM Systems
Red Team's SIEM - easy deployable tool for Red Teams used for tracking and alarming about Blue Team activities as wel…
Nzyme collects 802.11 management frames directly from the air and sends them to a Graylog (Open Source log management…
Java
Updated Jun 24, 2018
Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Eve…
PowerShell
Updated Apr 17, 2019
A collective list of public JSON APIs for use in security. Contributions welcome
Updated Apr 5, 2019
Sagan uses a 'Snort like' engine and rules to analyze logs (syslog/event log/snmptrap/netflow/etc)
C
Updated Apr 30, 2019
Threat Hunting Reconnaissance Toolkit
threat
hunt
red
blue
purple
team
incident
response
baseline
monitor
analysis
scan
log
forensics
triage
recon
threat-hunting
security
soc
siem
PowerShell
Updated Apr 20, 2019
Automatically generated actionable analytics designed to combat threats based on MITRE's ATT&CK.
Test Blue Team detections without running any attack.
C#
Updated Apr 2, 2019
C++
Updated May 1, 2019
Open-source framework to detect outliers in Elasticsearch events
Automated Use Case Testing
TeX
Updated May 1, 2018
A datasource assessment on an event level to show potential ATT&CK coverage
PowerShell
Updated Apr 30, 2019
Splunk code (SPL) useful for serious threat hunters.
Updated Mar 21, 2018
SIAC is an enterprise SIEM built on open-source technology.
siem
security
elk
osquery
intrusion-detection
secdevops
pci-dss
fim
compliance
wazuh
incident-response
aws
Updated Oct 31, 2018
Curated list of awesome cybersecurity companies and solutions.
Updated Apr 20, 2017
Threat Alert Logic Repository
Shell
Updated Feb 7, 2019
Open Source SIEM (Security Information and Event Management system).
siem
risk-management
risk-assessment
vulnerability-management
security
security-tools
secops
security-audit
web-application
asset-management
log-management
log-analysis
log-collector
log
forensics
security-analysis
security-awareness
syslog
log-parser
log-monitoring
Python
Updated Mar 18, 2019
Tools to create a Native Windows Audit Collection Platform. Active Directory example provided
PowerShell
Updated May 9, 2017
SIEM Tactics, Techiques, and Procedures
threat
hunt
red
blue
purple
team
incident
response
baseline
monitor
analysis
scan
log
forensics
triage
recon
threat-hunting
security
soc
siem
Updated Apr 21, 2019
Open Source ETL designed for and dedicated to Log processing and transformation
Java
Updated Dec 20, 2018
A SIEM inspired by HECTOR, built on Django.
Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder, EVTX Parser and Reader. Make …
Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.
Shell
Updated Dec 6, 2018
Install a full Splunk Enterprise Cluster or Universal forwarder using an ansible playbook
Shell
Updated Apr 6, 2019
Very basic CLI SIEM (Security Information and Event Management system).
log
syslog
log-analysis
log-analytics
forensics
security
security-tools
log-management
log-monitoring
log-collector
log-analyzer
siem
security-analysis
security-awareness
parser
parsing
command-line
cli
secops
Python
Updated Mar 24, 2018
A Lambda-powered Security Orchestration framework for AWS GuardDuty
aws
aws-lambda
cloud
cloudsecurity
aws-security
aws-guardduty
soar
incident-response
cybersecurity
threatintel
siem
blueteam
Python
Updated Aug 22, 2018
Open Source data and event driven real time Monitoring and Analytics Platform
rancher
ansible
kafka
elasticsearch
kibana
logstash
elk-stack
docker
kubernetes
cattle
logmanagement
itoa
siem
zookeeper
grafana
prometheus
Shell
Updated Jan 19, 2019