LastActivityView
A tool that collects and displays user activity and system events on a Windows system.
Zircolite is a standalone tool written in Python 3 that allows the use of SIGMA rules on various log formats including MS Windows EVTX, Auditd, Sysmon for Linux, EVTXtract, CSV, and XML. It is relatively fast, based on a Sigma backend (SQLite), and can export results to multiple formats like JSON, CSV, Splunk, Elastic, Zinc, and Timesketch. Zircolite can be used directly in Python or through provided binaries.
A tool that collects and displays user activity and system events on a Windows system.
Security-Guard helps secure microservices and serverless containers by detecting and blocking exploits.
A compliant audit log tool that provides a searchable, exportable record of read/write events.
A logging proxy tool created in response to the 'MongoDB Apocalypse', with Docker support.
Sysdig is a system visibility tool with native container support.
A Command Line Map-Reduce tool for analyzing cowrie log files over time and creating visualizations and statistics.