Siem
Showing 16 of 16 projects
An open-source unified XDR and SIEM platform for threat prevention, detection, and response across endpoints and cloud workloads.
A generic and open signature format for describing log event detections, shareable across SIEM systems.
A generic and open signature format for describing log event detections, shareable across SIEM systems.
A simple framework for alerting on anomalies, spikes, or other patterns in Elasticsearch data.
Open Source Host-based Intrusion Detection System performing log analysis, file integrity checking, rootkit detection, and active response.
An open-source threat hunting platform with advanced analytics capabilities built on ELK stack, Apache Spark, and Jupyter notebooks.
A Linux distribution for threat hunting, enterprise security monitoring, and log management.
A public repository for developing, testing, and maintaining detection rules for Elastic Security's SIEM, with tools for Detections as Code.
An open-source security incident response platform that automates and coordinates enterprise defense workflows.
A curated list of resources, tools, and frameworks for detection engineering in cybersecurity.
A curated collection of public JSON APIs for cybersecurity professionals, covering threat intelligence, malware analysis, and security tools.
A data pipeline engine for security teams to collect, transform, enrich, and route telemetry data at scale.
A collection of example YARA-L detection rules and dashboards for Google Security Operations (SecOps).
A collection of built-in detection rules and policies for Panther, a modern SIEM, enabling security monitoring as code.
A collection of Splunk SPL queries and prototypes for threat hunting and detection engineering.
An open-source SIEM system built with Python Django for log management, risk assessment, and asset tracking.
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.