RedELK Logo

RedELK

0
Free
Visit Website

RedELK is a Red Team's SIEM tool designed to track and alarm about Blue Team activities, enhancing usability in long-term operations.

FEATURES

ALTERNATIVES

A cloud-native SIEM platform that provides security analytics, intuitive workflow, and simplified incident response to help security teams defend against cyber threats.

Commercial

A toolset for collecting and processing netflow/ipfix and sflow data from netflow/sflow compatible devices.

Free

A Command Line Map-Reduce tool for analyzing cowrie log files over time and creating visualizations and statistics.

Free

Windows Event Log Analyzer with logon timeline generator and noise reduction for fast forensics.

Free

An Event Hub to gather, process, and monitor system events and link them to an inventory.

Free

Security-Guard helps secure microservices and serverless containers by detecting and blocking exploits.

Free

SysmonSearch makes event log analysis more effective by aggregating Microsoft Sysmon logs and providing detailed analysis through Elasticsearch and Kibana.

Free

A pure Python parser for Windows Event Log files with access to File and Chunk headers, record templates, and event entries.

Free