Event Query Language (EQL) Logo

Event Query Language (EQL)

0
Free
Visit Website

Browse a library of EQL analytics now natively integrated in Elasticsearch since Endgame joined forces with Elastic. EQL in Elasticsearch accommodates non-security users with changes summarized in the Elasticsearch EQL documentation. Get started by installing the EQL module with Python 2.7 and 3.5+, then try a sample json file and test it with EQL commands.

FEATURES

ALTERNATIVES

Serverless, real-time data analysis framework for incident detection and response.

Free

Python library and command line tools for log visualization with interactive plots.

Free

Security-Guard helps secure microservices and serverless containers by detecting and blocking exploits.

Free

A tool for advanced HTTPD logfile security analysis and forensics, implementing various techniques to detect attacks against web applications.

Free

Sysdig is a system visibility tool with native container support.

Free

A security information and event management solution that collects, normalizes, and analyzes log data from across an organization's infrastructure to enhance threat detection and compliance reporting.

Commercial

A centralized tool for security monitoring and analysis that integrates various open source big data technologies.

Free

ElastAlert is a framework for alerting on anomalies in Elasticsearch data.

Free

PINNED