A community-led project focused on the documentation, standardization, and modeling of security event logs. Goals include defining and sharing a common data model, data structures, and relationships in security event logs, as well as providing detailed information in a dictionary format about various security event logs.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A dynamic GUI for advanced log analysis, allowing users to execute SQL queries on structured log data.
Sysmon for Linux is a tool that monitors and logs system activity with advanced filtering to identify malicious activity.
Elastic is a search-powered AI company that enables users to find answers from all data in real-time at scale.
Procmon for Linux is a reimagining of the classic Procmon tool from Windows, allowing Linux developers to trace syscall activity efficiently.
AlienVault OSSIM provides an all-in-one security management solution with asset discovery, vulnerability assessment, and SIEM capabilities.