Logdissect

Free

Logdissect is a CLI utility and Python library for analyzing log files and other data. It can parse, merge, filter, and export data (to log files, or JSON). Installing: To install the latest release, see the latest instructions on the releases page. To install the development source, see the instructions in CONTRIBUTING.md. Usage Options: usage: logdissect.py [-h] [--dhost DHOST] [--grep PATTERN] [--last LAST] [--process PROCESS] [--protocol PROTOCOL] [--range RANGE] [--utc] [--rdhost DHOST] [--rgrep PATTERN] [--rprocess PROCESS] [--rprotocol PROTOCOL] [--rshost SHOST] [--rsource SOURCE] [--shost SHOST] [--source SOURCE] [--linejson LINEJSON] [--outlog OUTLOG] [--label LABEL] [--sojson SOJSON] [--pretty] [--version] [--verbose] [-s] [--list-parsers] [-p PARSER] [-z] [-t TZONE] [file [file ...]] For library documentation, see the module documentation.

FEATURES

The author has not provided features for this tool yet. If you are the author, please sign in or claim the tool to add features by clicking the icon above.

ALTERNATIVES

ElastAlert

ElastAlert is a framework for alerting on anomalies in Elasticsearch data.

Free

SIEM

Starbase

Democratizing graph-based security analysis by collecting assets and relationships from services and systems into an intuitive graph view.

Free

SIEM

LogSlash

A method for log volume reduction without losing analytical capability.

Free

SIEM

Blauhaunt

A tool collection for filtering and visualizing logon events, designed for experienced DFIR specialists in threat hunting and incident response.

Free

SIEM

NodeSecure

Cybersecurity project for security monitoring of Node.js applications.

Free

SIEM

MongoDB-HoneyProxy

A logging proxy tool created in response to the 'MongoDB Apocalypse', with Docker support.

Free

SIEM

Security-Guard

Security-Guard helps secure microservices and serverless containers by detecting and blocking exploits.

Free

SIEM

Graylog

Graylog offers advanced log management and SIEM capabilities to enhance security and compliance across various industries.

Commercial

SIEM

PINNED

InfoSecHired

An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Commercial

Resources

Mandos Brief Newsletter

A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Free

Resources

System Two Security

An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.

Commercial

Security Operations

Aikido Security

Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.

Commercial

Application Security

Permiso

Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.

Commercial

IAM

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial

Cloud Security

Adversa AI

Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.

Commercial

AI Security