Access a repository of Analytic Stories and security guides mapped to industry frameworks, with Splunk searches, machine learning algorithms, and playbooks for threat detection and response.
Logdissect is a CLI utility and Python library for analyzing log files and other data. It can parse, merge, filter, and export data (to log files, or JSON). Installing: To install the latest release, see the latest instructions on the releases page. To install the development source, see the instructions in CONTRIBUTING.md. Usage Options: usage: logdissect.py [-h] [--dhost DHOST] [--grep PATTERN] [--last LAST] [--process PROCESS] [--protocol PROTOCOL] [--range RANGE] [--utc] [--rdhost DHOST] [--rgrep PATTERN] [--rprocess PROCESS] [--rprotocol PROTOCOL] [--rshost SHOST] [--rsource SOURCE] [--shost SHOST] [--source SOURCE] [--linejson LINEJSON] [--outlog OUTLOG] [--label LABEL] [--sojson SOJSON] [--pretty] [--version] [--verbose] [-s] [--list-parsers] [-p PARSER] [-z] [-t TZONE] [file [file ...]] For library documentation, see the module documentation.
Access a repository of Analytic Stories and security guides mapped to industry frameworks, with Splunk searches, machine learning algorithms, and playbooks for threat detection and response.
SysmonSearch makes event log analysis more effective by aggregating Microsoft Sysmon logs and providing detailed analysis through Elasticsearch and Kibana.
Elastic is a search-powered AI company that enables users to find answers from all data in real-time at scale.
A tool that collects and displays user activity and system events on a Windows system.
Search AWS CloudWatch logs on the command line with aws-sdk-for-go.
AlienVault OSSIM provides an all-in-one security management solution with asset discovery, vulnerability assessment, and SIEM capabilities.