Event Query Language (EQL) Logo

Event Query Language (EQL)

0
Free
SIEM
elasticsearch
security-analytics
log-analysis
security-information-and-event-management
Visit Website

Browse a library of EQL analytics now natively integrated in Elasticsearch since Endgame joined forces with Elastic. EQL in Elasticsearch accommodates non-security users with changes summarized in the Elasticsearch EQL documentation. Get started by installing the EQL module with Python 2.7 and 3.5+, then try a sample json file and test it with EQL commands.

FEATURES

ALTERNATIVES

Panther Detections Logo
Panther Detections

A collection of detections for Panther SIEM with detailed setup instructions.

Free
SIEM
Blauhaunt Logo
Blauhaunt

A tool collection for filtering and visualizing logon events, designed for experienced DFIR specialists in threat hunting and incident response.

Free
SIEM
nfdump Logo
nfdump

A toolset for collecting and processing netflow/ipfix and sflow data from netflow/sflow compatible devices.

Free
SIEM
OpenSOC Logo
OpenSOC

A centralized tool for security monitoring and analysis that integrates various open source big data technologies.

Free
SIEM
Amazon Detective Logo
Amazon Detective

A service that analyzes and visualizes security data to investigate potential security issues.

Free
SIEM
Procmon for Linux Logo
Procmon for Linux

Procmon for Linux is a reimagining of the classic Procmon tool from Windows, allowing Linux developers to trace syscall activity efficiently.

Free
SIEM
aws-logsearch Logo
aws-logsearch

Search AWS CloudWatch logs on the command line with aws-sdk-for-go.

Free
SIEM
Elastic Security Logo
Elastic Security

Elastic is a search-powered AI company that enables users to find answers from all data in real-time at scale.

Commercial
SIEM

PINNED

InfoSecHired Logo

InfoSecHired

An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Commercial
Resources
Mandos Brief Newsletter Logo

Mandos Brief Newsletter

A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Free
Resources
Kriptos Logo

Kriptos

An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.

Commercial
Data Protection
System Two Security Logo

System Two Security

An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.

Commercial
Security Operations
Aikido Security Logo

Aikido Security

Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.

Commercial
Application Security
Permiso Logo

Permiso

Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.

Commercial
IAM
Wiz Logo

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial
Cloud Security
Adversa AI Logo

Adversa AI

Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.

Commercial
AI Security