Synthetic Adversarial Log Objects (SALO) is a framework designed to generate synthetic log events without requiring actual infrastructure or actions to trigger real events. The framework enables security practitioners, data scientists, and researchers to create log events in a simple, repeatable, and randomized manner without the traditional overhead of deploying servers, network monitoring solutions, or complex infrastructure. SALO addresses the challenges associated with generating security logs for testing and research purposes. Previously, creating network security logs such as DNS queries for malicious domains required building servers, implementing network monitoring solutions, and sending actual DNS queries to resolvers with limited customization options. The framework eliminates the need for time-consuming deployments, reduces technical and financial barriers, and simplifies the process of creating complex scenarios that would otherwise require highly technical deployments of software, services, or cloud-native technologies. SALO provides a streamlined approach to log generation that supports security testing, research activities, and data analysis without the complexity of traditional log generation methods.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Shuffle Automation provides an open-source platform for security orchestration, automation, and response.
An open-source, drag-and-drop security workflow builder with integrated case management for automating security workflows and tackling alert fatigue.
SOARCA is an open-source SOAR platform that automates security incident response workflows using standardized CACAOv2 playbooks and multiple integration interfaces.
Automated Digital Forensics and Incident Response (DFIR) software for rapid incident response and intrusion investigations.
A community-driven repository and development framework for creating custom automation activities within the Ayehu NG IT orchestration platform.
IRIS-SOAR is a Python-based modular SOAR platform that automates security incident response workflows and integrates with DFIR-IRIS for enhanced digital forensics operations.
Fast Intercept is a security automation platform that empowers users to maximize their existing security products and automate routine tasks.
Catalyst is a SOAR system that automates alert handling and incident response processes, adapting to your workflows and being open source.
Shuffle is a platform for automating security workflows with confidence, offering templates, collaboration tools, and a large app library.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.