Fast and easy to use database for logs, which can efficiently handle terabytes of logs

Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.

Pipelined Query Language

select * from logs; Tailpipe is an open source SIEM for instant log insights, powered by DuckDB. Analyze millions of events in seconds, right from your terminal.

Security event correlation engine for ELK stack

Import specific data sources into the Sigma generic and open signature format.

Go Package for ArcSight's Common Event Format (CEF)

A terraform provider for chronicle

A Splunk REST API Client written in Go. This package is designed to allow users to perform common Splunk tasks through a lightweight command line tool.

An elasticbeat that polls the Okta System Log https://developer.okta.com/docs/api/resources/system_log/#getting-started

Go program that exports 1Password security events to Microsoft Sentinel SIEM.

An elastic beat to poll Sophos Central https://cloud.sophos.com events and alerts

Utility to compare the content between two qradar instances

Customizable SIEM and XDR powered by Real-Time correlation and Threat Intelligence

Streaming Security Event Correlator

UTMStack Agent

CrowdSec plugin that writes the alerts to a file so that any SIEM agent can consume.

Log ingestor that retrieves audit logs from Miro and stores them in Microsoft Sentinel SIEM>

Tool to manage incidents in MaxPatrol SIEM

🚀 Build seamless integrations with Palo Alto Networks Cortex XSOAR 8.x using this native Go API client for efficient incident management and error handling.