Blauhaunt
A tool collection for filtering and visualizing logon events, designed for experienced DFIR specialists in threat hunting and incident response.
Sysdig is a universal system visibility tool with native support for containers. It provides deep system visibility and is easy to use. Csysdig is a simple, intuitive, and fully customizable curses UI for sysdig. To get started, run Sysdig in a container using the provided command, or install the latest release with a deb or rpm package for your distribution.
A tool collection for filtering and visualizing logon events, designed for experienced DFIR specialists in threat hunting and incident response.
ElastAlert is a framework for alerting on anomalies in Elasticsearch data.
A centralized tool for security monitoring and analysis that integrates various open source big data technologies.
ELAT (Event Log Analysis Tool) is a tool that helps in analyzing Windows event logs for malware detection.
A Security Information and Event Management (SIEM) system with a focus on security and minimalism.
Converts Sigma and Yara rules to CRYPTTECH's SIEM query language.