Matano Open Source Security Data Lake Logo

Matano Open Source Security Data Lake

0
Free
Visit Website

Matano Open Source Security Data Lake is an open source cloud-native security data lake, built for security teams on AWS. It offers a commercial managed Cloud SIEM for a complete enterprise Security Operations platform. Matano normalizes unstructured security logs into a structured real-time data lake in your AWS account, integrates out of the box with 50+ sources for security logs, supports Detection-as-Code using Python, allows for automatic import of Sigma detections, provides a Log Transformation Pipeline with custom VRL scripting, and ensures no vendor lock-in by using open table format (Apache Iceberg) and open schema standards (ECS) for full ownership of security data in a vendor-neutral format. Users can bring their own analytics and query the security lake directly from any Iceberg-compatible engine (AWS Athena, Snowflake, Spark, Trino, etc.) without vendor lock-in.

FEATURES

ALTERNATIVES

RedELK enhances Red Team operations with SIEM capabilities to monitor and alert on Blue Team activities.

Free

Logdissect is a CLI utility and Python library for analyzing log files and other data.

Free

ElastAlert is a framework for alerting on anomalies in Elasticsearch data.

Free

HoneyView is a tool for analyzing honeyd logfiles graphically and textually.

Free

A collection of detections for Panther SIEM with detailed setup instructions.

Free

Security-Guard helps secure microservices and serverless containers by detecting and blocking exploits.

Free

A tool for advanced HTTPD logfile security analysis and forensics, implementing various techniques to detect attacks against web applications.

Free

Cybersecurity project for security monitoring of Node.js applications.

Free