A standard for reducing log volume without sacrificing analytical capability
☆216Feb 21, 2025Updated last year
Alternatives and similar repositories for LogSlash
Users that are interested in LogSlash are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Substation is a toolkit for routing, normalizing, and enriching security event and audit logs.☆402Jan 20, 2026Updated 4 months ago
- A repository to share publicly available Velociraptor detection content☆203Updated this week
- Transform Linux Audit logs for SIEM usage☆836Jun 6, 2026Updated last week
- DFF (Digital Forensics Framework)☆11Jan 6, 2021Updated 5 years ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆91Mar 11, 2026Updated 3 months ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- OCSF Schema☆836Updated this week
- Production-ready detection & response queries for osquery☆607Apr 22, 2026Updated last month
- Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS☆1,677Jan 8, 2025Updated last year
- An extension of the sigma standard to include security metrics.☆16May 18, 2023Updated 3 years ago
- A web scraper to create MISP events and reports☆17Jun 6, 2026Updated last week
- Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…☆90Sep 16, 2023Updated 2 years ago
- Real-time, container-based file scanning at enterprise scale☆989Jun 6, 2026Updated last week
- SIEGMA - Transform Sigma rules into SIEM consumables☆160Mar 10, 2025Updated last year
- AYY LMAO☆22Mar 26, 2016Updated 10 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Tenzir is the data pipeline engine for security teams.☆742Updated this week
- MDE relies on some of the Audit settings to be enabled☆101Jul 15, 2022Updated 3 years ago
- YARI is an interactive debugger for YARA Language.☆91Sep 10, 2025Updated 9 months ago
- Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)☆566Updated this week
- Mapping the ATT&CK matrix in a Cowrie honeypot☆16Aug 31, 2018Updated 7 years ago
- Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies☆43Sep 2, 2025Updated 9 months ago
- A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.☆822Jun 9, 2026Updated last week
- This is a collection of threat detection rules / rules engines that I have come across.☆300May 5, 2024Updated 2 years ago
- Open Source Security Events Metadata (OSSEM)☆1,298Feb 27, 2023Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- YARA rule analyzer to improve rule quality and performance☆115Jun 4, 2026Updated 2 weeks ago
- Golang io/fs implementation for Google Cloud Storage☆13Jan 20, 2024Updated 2 years ago
- Kestrel threat hunting language: building reusable, composable, and shareable huntflows across different data sources and threat intel.☆327Sep 27, 2024Updated last year
- Sysmon event simulation utility which can be used to simulate the attacks to generate the Sysmon Event logs for testing the EDR detection…☆867Jan 20, 2022Updated 4 years ago
- Audit log wall of shame.☆42Aug 20, 2025Updated 9 months ago
- OCSF Schema Validation☆12May 4, 2026Updated last month
- Synapse Central Intelligence System☆436Updated this week
- Collaborative Incident Response platform☆1,507Jun 8, 2026Updated last week
- The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…☆154Apr 25, 2022Updated 4 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- pyJARM is a library for doing JARM fingerprinting using python☆50Mar 23, 2025Updated last year
- Picatrix is a library designed to help security analysts in a notebook environment, such as colab or jupyter.☆55Mar 26, 2025Updated last year
- Automatic detection engineering technical state compliance☆55Jul 7, 2024Updated last year
- Elastic Security detection content for Endpoint☆1,439Jun 8, 2026Updated last week
- Detection Ideas & Rules repository.☆179Sep 10, 2021Updated 4 years ago
- ⚠️ ARCHIVED**: This repository is no longer actively maintained. All Sigma rules are now managed and available in SIEM Rules☆13Mar 19, 2026Updated 2 months ago
- UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It …☆1,378May 28, 2026Updated 3 weeks ago