StreamAlert is a serverless, real-time data analysis framework empowering users to ingest, analyze, and alert on data from any environment. It is used by computer security teams to scan terabytes of log data daily for incident detection and response. Rules are written in Python, logs and alerts can be retroactively searched, and deployment is automated and secure by design. It supports dozens of log types, has a collection of community rules, and is fully open source and customizable.
This tool is not verified yet and doesn't have listed features.
Did you submit the verified tool? Sign in to add features.
Are you the author? Claim the tool by clicking the icon above. After claiming, you can add features.
A centralized tool for security monitoring and analysis that integrates various open source big data technologies.
Sysdig is a system visibility tool with native container support.
Browse a library of EQL analytics now natively integrated in Elasticsearch.
Open source security data lake for AWS with real-time log normalization and Detection-as-Code capabilities.
Elastic is a search-powered AI company that enables users to find answers from all data in real-time at scale.
A compliant audit log tool that provides a searchable, exportable record of read/write events.