RedELK
RedELK enhances Red Team operations with SIEM capabilities to monitor and alert on Blue Team activities.
LogESP is a Security Information and Event Management (SIEM) system written in Python Django, featuring a web frontend for log management, forensics, risk management, and asset management. It was designed with security in mind, built on the Python Django framework, and does not require credentials or software installation on log sources.
RedELK enhances Red Team operations with SIEM capabilities to monitor and alert on Blue Team activities.
Browse a library of EQL analytics now natively integrated in Elasticsearch.
Windows Event Log Analyzer with logon timeline generator and noise reduction for fast forensics.
Open source security data lake for AWS with real-time log normalization and Detection-as-Code capabilities.
A dynamic GUI for advanced log analysis, allowing users to execute SQL queries on structured log data.
Apache Metron is a centralized tool for security monitoring and analysis that integrates various open-source big data technologies.