Alterix
Converts Sigma and Yara rules to CRYPTTECH's SIEM query language.
Search AWS CloudWatch logs all at once on the command line using the aws sdk-for-go. Configure your AWS secrets and use options like specifying search pattern, log group, start and end time, count, and AWS region. Example command: ~/go/bin/aws-logsearch -p 'login' -g 'group001' -c 5
Converts Sigma and Yara rules to CRYPTTECH's SIEM query language.
A method for log volume reduction without losing analytical capability.
Access a repository of Analytic Stories and security guides mapped to industry frameworks, with Splunk searches, machine learning algorithms, and playbooks for threat detection and response.
Logdissect is a CLI utility and Python library for analyzing log files and other data.
HonnyPotter is a WordPress plugin that logs all failed login attempts, with a caution to use it at your own risk.
Serverless, real-time data analysis framework for incident detection and response.