Log Analysis

16 projects

Showing 16 of 16 projects

kibanaTypeScript

Open-source interface for querying, analyzing, visualizing, and managing Elasticsearch data.

#hacktoberfest#open-source#observability

An open-source unified XDR and SIEM platform for threat prevention, detection, and response across endpoints and cloud workloads.

#container-security#siem#malware-detection

An open-source, participative security engine that detects and blocks malicious IPs using crowdsourced threat intelligence.

#crowdsourced-security#waf#ids

A generic and open signature format for describing log event detections, shareable across SIEM systems.

#signatures#yaml#siem

Stars10.4k

Forks2.6k

Last commit3 days ago

Sigma RulesPython

A generic and open signature format for describing log event detections, shareable across SIEM systems.

#signatures#yaml#siem

Stars10.4k

Forks2.6k

Last commit3 days ago

ElastalertPython

A flexible framework for alerting on anomalies, spikes, or patterns in Elasticsearch data.

#devops#real-time-alerts#monitoring

Stars8.0k

Forks1.7k

Last commit1 year ago

Elastalert | YelpPython

A simple framework for alerting on anomalies, spikes, or other patterns in Elasticsearch data.

#devops#siem#observability

Stars8.0k

Forks1.7k

Last commit1 year ago

SerilogC#

A diagnostic logging library for .NET applications with first-class support for structured event data.

#observability#diagnostic-tools#message-templates

Stars7.9k

Forks854

Last commit1 month ago

OSSECC

Open Source Host-based Intrusion Detection System performing log analysis, file integrity checking, rootkit detection, and active response.

#real-time-alerting#siem#policy-monitoring

Stars5.0k

Forks1.1k

Last commit4 days ago

Hunting ELK (HELK)Jupyter Notebook

An open-source threat hunting platform with advanced analytics capabilities built on ELK stack, Apache Spark, and Jupyter notebooks.

#apache-spark#elk-stack#security-analytics

Stars3.9k

Forks693

Last commit1 year ago

claude-devtoolsTypeScript

A desktop app that reconstructs Claude Code's full execution trace from local session logs, showing every tool call, subagent, and token.

#ai#developer-tools#desktop-app

Stars3.2k

Forks230

Last commit6 days ago

Loghub

A large collection of real-world system log datasets for AI-driven log analytics research.

#logs#operating-systems#distributed-systems

Stars2.7k

Forks755

Last commit2 days ago

Windows Events Attack SamplesHTML

A collection of 200 Windows EVTX event log samples mapped to MITRE ATT&CK techniques for detection testing and threat hunting.

#digital-forensics#security-training#windows-security

A lightweight, single-binary tool for viewing and filtering terminal logs in a real-time web interface.

#devops#terminal-tools#logs

Stars2.2k

Forks67

Last commit8 months ago

PlasoPython

A Python-based engine for automatic creation of super timelines from computer system logs and files for digital forensic analysis.

#parsing#digital-forensics#timeline

Stars2.1k

Forks411

Last commit5 days ago

KQL Advanced Hunting Queries & Analytics RulesPython

A collection of ready-to-use KQL queries for threat hunting, detection, and analytics in Microsoft Defender for Endpoint and Azure Sentinel.

#azure-sentinel#security-analytics#vulnerability-management

Stars1.7k

Forks321

Last commit

Related Tags

Community-curated · Updated weekly · 100% open source

Found a gem we're missing?

Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.

Submit a project Star on GitHub