ElastAlert Logo

ElastAlert

0
Free
SIEM
anomaly-detection
elasticsearch
log-analysis
security-monitoring
Visit Website

ElastAlert is a simple framework for alerting on anomalies, spikes, or other patterns of interest from data in Elasticsearch. It works with all versions of Elasticsearch and is designed to be reliable, highly modular, and easy to set up and configure. At Yelp, ElastAlert was created out of the need for a companion tool for alerting on inconsistencies in data managed with Elasticsearch, Logstash, and Kibana.

FEATURES

ALTERNATIVES

zeek2es.py Logo
zeek2es.py

Python application to translate Zeek logs into ElasticSearch's bulk load JSON format with detailed instructions and features.

Free
SIEM
Starbase Logo
Starbase

Democratizing graph-based security analysis by collecting assets and relationships from services and systems into an intuitive graph view.

Free
SIEM
Sysmon for Linux Logo
Sysmon for Linux

Sysmon for Linux is a tool that monitors and logs system activity with advanced filtering to identify malicious activity.

Free
SIEM
LastActivityView Logo
LastActivityView

A tool that collects and displays user activity and system events on a Windows system.

Free
SIEM
aws-logsearch Logo
aws-logsearch

Search AWS CloudWatch logs on the command line with aws-sdk-for-go.

Free
SIEM
Log-Killer Logo
Log-Killer

Tool for deleting logs on Linux/Windows servers.

Free
SIEM
Open Source Security Events Metadata (OSSEM) Logo
Open Source Security Events Metadata (OSSEM)

A community-led project focused on standardizing security event logs.

Free
SIEM
WELA (Windows Event Log Analyzer) Logo
WELA (Windows Event Log Analyzer)

Windows Event Log Analyzer with logon timeline generator and noise reduction for fast forensics.

Free
SIEM

PINNED

InfoSecHired Logo

InfoSecHired

An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Commercial
Resources
Mandos Brief Newsletter Logo

Mandos Brief Newsletter

A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Free
Resources
Kriptos Logo

Kriptos

An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.

Commercial
Data Protection
System Two Security Logo

System Two Security

An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.

Commercial
Security Operations
Aikido Security Logo

Aikido Security

Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.

Commercial
Application Security
Permiso Logo

Permiso

Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.

Commercial
IAM
Wiz Logo

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial
Cloud Security
Adversa AI Logo

Adversa AI

Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.

Commercial
AI Security