ElastAlert
ElastAlert is a simple framework for alerting on anomalies, spikes, or other patterns of interest from data in Elasticsearch. It works with all versions of Elasticsearch and is designed to be reliable, highly modular, and easy to set up and configure. At Yelp, ElastAlert was created out of the need for a companion tool for alerting on inconsistencies in data managed with Elasticsearch, Logstash, and Kibana.
FEATURES
SIMILAR TOOLS
SysmonSearch makes event log analysis more effective by aggregating Microsoft Sysmon logs and providing detailed analysis through Elasticsearch and Kibana.
Python library and command line tools for log visualization with interactive plots.
Windows Event Log Analyzer with logon timeline generator and noise reduction for fast forensics.
A cloud-native SIEM platform that provides security analytics, intuitive workflow, and simplified incident response to help security teams defend against cyber threats.
A logging proxy tool created in response to the 'MongoDB Apocalypse', with Docker support.
A tool that collects and displays user activity and system events on a Windows system.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.