Matano Open Source Security Data Lake Logo

Matano Open Source Security Data Lake

0
Free
Visit Website

Matano Open Source Security Data Lake is an open source cloud-native security data lake, built for security teams on AWS. It offers a commercial managed Cloud SIEM for a complete enterprise Security Operations platform. Matano normalizes unstructured security logs into a structured real-time data lake in your AWS account, integrates out of the box with 50+ sources for security logs, supports Detection-as-Code using Python, allows for automatic import of Sigma detections, provides a Log Transformation Pipeline with custom VRL scripting, and ensures no vendor lock-in by using open table format (Apache Iceberg) and open schema standards (ECS) for full ownership of security data in a vendor-neutral format. Users can bring their own analytics and query the security lake directly from any Iceberg-compatible engine (AWS Athena, Snowflake, Spark, Trino, etc.) without vendor lock-in.

FEATURES

ALTERNATIVES

Procmon for Linux is a reimagining of the classic Procmon tool from Windows, allowing Linux developers to trace syscall activity efficiently.

Free

A toolset for collecting and processing netflow/ipfix and sflow data from netflow/sflow compatible devices.

Free

A community-led project focused on standardizing security event logs.

Free

Democratizing graph-based security analysis by collecting assets and relationships from services and systems into an intuitive graph view.

Free

A Security Information and Event Management (SIEM) system with a focus on security and minimalism.

Free

A centralized tool for security monitoring and analysis that integrates various open source big data technologies.

Free

Windows Event Log Analyzer with logon timeline generator and noise reduction for fast forensics.

Free

HonnyPotter is a WordPress plugin that logs all failed login attempts, with a caution to use it at your own risk.

Free