Alien Vault Ossim Logo

Alien Vault Ossim

1
Free
Visit Website

AlienVault OSSIM (Open Source Security Information and Event Management) by AT&T Cybersecurity is a comprehensive security management solution that combines asset discovery, vulnerability assessment, intrusion detection, behavioral monitoring, and SIEM capabilities in one platform, enabling organizations to consolidate their security tools and improve threat detection and response.

FEATURES

ALTERNATIVES

SysmonSearch makes event log analysis more effective by aggregating Microsoft Sysmon logs and providing detailed analysis through Elasticsearch and Kibana.

Free

A compliant audit log tool that provides a searchable, exportable record of read/write events.

Free

Standalone SIGMA-based detection tool for EVTX, Auditd, Sysmon for Linux, XML or JSONL/NDJSON Logs.

Free

A logging proxy tool created in response to the 'MongoDB Apocalypse', with Docker support.

Free

Converts Sigma and Yara rules to CRYPTTECH's SIEM query language.

Free

ElastAlert is a framework for alerting on anomalies in Elasticsearch data.

Free

Tool for deleting logs on Linux/Windows servers.

Free

Open source security data lake for AWS with real-time log normalization and Detection-as-Code capabilities.

Free