ElastAlert
ElastAlert is a framework for alerting on anomalies in Elasticsearch data.
AlienVault OSSIM (Open Source Security Information and Event Management) by AT&T Cybersecurity is a comprehensive security management solution that combines asset discovery, vulnerability assessment, intrusion detection, behavioral monitoring, and SIEM capabilities in one platform, enabling organizations to consolidate their security tools and improve threat detection and response.
ElastAlert is a framework for alerting on anomalies in Elasticsearch data.
A framework for generating log events without the need for infrastructure, allowing for simple, repeatable, and randomized log event creation.
Python library and command line tools for log visualization with interactive plots.
IBM QRadar is a SIEM solution for real-time threat detection.
Converts Sigma and Yara rules to CRYPTTECH's SIEM query language.
A compliant audit log tool that provides a searchable, exportable record of read/write events.