Open-Awesome
CategoriesAlternativesStacksSelf-HostedExplore
Open-Awesome

© 2026 Open-Awesome. Curated for the developer elite.

TermsPrivacyAboutGitHubRSS
  1. Home
  2. Cybersecurity Blue Team
  3. VAST

VAST

BSD-3-ClauseC++v6.4.0

A data pipeline engine for security teams to collect, transform, enrich, and route telemetry data at scale.

Visit WebsiteGitHubGitHub
744 stars105 forks0 contributors

What is VAST?

Tenzir is a data pipeline engine specifically designed for security teams to manage security telemetry dataflows at scale. It enables collection, parsing, shaping, normalization, aggregation, storage, querying, and routing of security data from numerous sources. The platform helps teams quickly onboard data, reduce volumes to optimize costs, and execute detections and analytics in-stream.

Target Audience

Security operations teams and security engineers who need to process, analyze, and manage large volumes of security telemetry data from multiple sources.

Value Proposition

Tenzir provides a unified platform specifically tailored for security data workflows, offering comprehensive data pipeline capabilities with built-in cost optimization and in-stream analytics designed for security use cases.

Overview

Tenzir is the data pipeline engine for security teams.

Use Cases

Best For

  • Processing and analyzing security telemetry data at scale
  • Reducing cloud and data costs for security operations
  • Building unified data pipelines for multiple security data sources
  • Executing security detections within data streams
  • Normalizing and enriching security data from diverse formats
  • Routing processed security data to appropriate analytics platforms

Not Ideal For

  • Teams processing non-security data like IoT sensor streams or business analytics
  • Organizations with simple logging needs that don't require complex data transformations
  • Projects prioritizing minimal setup and broad ecosystem support over security-specific optimizations

Pros & Cons

Pros

Unified Security Pipeline

Integrates collection, transformation, enrichment, and routing into a single platform, specifically designed for security telemetry workflows as highlighted in the README.

Cost Optimization Focus

Explicitly reduces data volumes to lower cloud and data costs, a key feature for managing expensive security operations data.

In-stream Analytics

Enables executing security detections and analytics directly within data pipelines, supporting real-time threat hunting without separate processing steps.

Scalability for Ops

Built to handle complex dataflows at scale, making it suitable for large-scale security environments with high telemetry volumes.

Cons

Niche Security Focus

Tailored exclusively for security telemetry, limiting its applicability for general data engineering tasks outside the security domain.

Steep Learning Curve

Requires expertise in both data pipeline engineering and security operations, which can be a barrier for teams without dedicated resources.

Limited General Ecosystem

As a specialized tool, it may have fewer community resources and integrations compared to broader solutions like Apache Kafka or Flink.

Frequently Asked Questions

Quick Stats

Stars744
Forks105
Contributors0
Open Issues0
Last commit2 days ago
CreatedSince 2010

Tags

#stream-processing#security-analytics#siem#pcap#data-enrichment#security#investigation#security-operations#dataops#netflow#data-ingestion#data-pipeline#data-transformation#soc#incident-response

Links & Resources

Website

Included in

Security14.2kCybersecurity Blue Team5.2k
Auto-fetched 1 day ago

Related Projects

wazuhwazuh

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Stars15,975
Forks2,358
Last commit1 day ago
opensnitchopensnitch

OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.

Stars13,839
Forks646
Last commit10 days ago
Tsunami Security ScannerTsunami Security Scanner

Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.

Stars8,589
Forks923
Last commit8 days ago
MaltrailMaltrail

Malicious traffic detection system

Stars8,518
Forks1,253
Last commit2 days ago
Community-curated · Updated weekly · 100% open source

Found a gem we're missing?

Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.

Submit a projectStar on GitHub