RedELK

Free

SIEM

blue-team

red-team

siem

security-information-and-event-management

incident-response

threat-hunting

Visit WebsiteVisit Website

RedELK is a Red Team's SIEM tool designed to track and alarm about Blue Team activities, enhancing usability in long-term operations.

FEATURES

The author has not provided features for this tool yet. If you are the author, please sign in or claim the tool to add features by clicking the icon above.

ALTERNATIVES

Security-Guard

Security-Guard helps secure microservices and serverless containers by detecting and blocking exploits.

Free

SIEM

Matano Open Source Security Data Lake

Open source security data lake for AWS with real-time log normalization and Detection-as-Code capabilities.

Free

SIEM

ElastAlert

ElastAlert is a framework for alerting on anomalies in Elasticsearch data.

Free

SIEM

Log-Killer

Tool for deleting logs on Linux/Windows servers.

Free

SIEM

nfdump

A toolset for collecting and processing netflow/ipfix and sflow data from netflow/sflow compatible devices.

Free

SIEM

SysmonSearch

SysmonSearch makes event log analysis more effective by aggregating Microsoft Sysmon logs and providing detailed analysis through Elasticsearch and Kibana.

Free

SIEM

Zentral

An Event Hub to gather, process, and monitor system events and link them to an inventory.

Free

SIEM

LORG

A tool for advanced HTTPD logfile security analysis and forensics, implementing various techniques to detect attacks against web applications.

Free

SIEM

PINNED

InfoSecHired

An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Commercial

Resources

Mandos Brief Newsletter

A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Free

Resources

Kriptos

An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.

Commercial

Data Protection

System Two Security

An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.

Commercial

Security Operations

Aikido Security

Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.

Commercial

Application Security

Permiso

Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.

Commercial

IAM

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial

Cloud Security

Adversa AI

Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.

Commercial

AI Security