A standard for reducing log volume without sacrificing analytical capability
☆216Feb 21, 2025Updated last year
Alternatives and similar repositories for LogSlash
Users that are interested in LogSlash are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Substation is a toolkit for routing, normalizing, and enriching security event and audit logs.☆400Jan 20, 2026Updated 4 months ago
- A repository to share publicly available Velociraptor detection content☆203May 21, 2026Updated last week
- Transform Linux Audit logs for SIEM usage☆829May 20, 2026Updated last week
- DFF (Digital Forensics Framework)☆11Jan 6, 2021Updated 5 years ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆89Mar 11, 2026Updated 2 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- OCSF Schema☆827May 20, 2026Updated last week
- Production-ready detection & response queries for osquery☆606Apr 22, 2026Updated last month
- Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS☆1,672Jan 8, 2025Updated last year
- An extension of the sigma standard to include security metrics.☆16May 18, 2023Updated 3 years ago
- A web scraper to create MISP events and reports☆17May 11, 2026Updated 2 weeks ago
- Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…☆90Sep 16, 2023Updated 2 years ago
- Real-time, container-based file scanning at enterprise scale☆987Updated this week
- SIEGMA - Transform Sigma rules into SIEM consumables☆159Mar 10, 2025Updated last year
- AYY LMAO☆22Mar 26, 2016Updated 10 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Tenzir is the data pipeline engine for security teams.☆739Updated this week
- MDE relies on some of the Audit settings to be enabled☆101Jul 15, 2022Updated 3 years ago
- YARI is an interactive debugger for YARA Language.☆91Sep 10, 2025Updated 8 months ago
- Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)☆556May 10, 2026Updated 2 weeks ago
- Mapping the ATT&CK matrix in a Cowrie honeypot☆16Aug 31, 2018Updated 7 years ago
- Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies☆43Sep 2, 2025Updated 8 months ago
- A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.☆813May 6, 2026Updated 3 weeks ago
- This is a collection of threat detection rules / rules engines that I have come across.☆300May 5, 2024Updated 2 years ago
- Open Source Security Events Metadata (OSSEM)☆1,296Feb 27, 2023Updated 3 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- YARA rule analyzer to improve rule quality and performance☆114Jan 18, 2026Updated 4 months ago
- Golang io/fs implementation for Google Cloud Storage☆13Jan 20, 2024Updated 2 years ago
- Kestrel threat hunting language: building reusable, composable, and shareable huntflows across different data sources and threat intel.☆327Sep 27, 2024Updated last year
- Sysmon event simulation utility which can be used to simulate the attacks to generate the Sysmon Event logs for testing the EDR detection…☆866Jan 20, 2022Updated 4 years ago
- Audit log wall of shame.☆42Aug 20, 2025Updated 9 months ago
- OCSF Schema Validation☆12May 4, 2026Updated 3 weeks ago
- Synapse Central Intelligence System☆436May 22, 2026Updated last week
- Collaborative Incident Response platform☆1,496Apr 28, 2026Updated last month
- The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…☆154Apr 25, 2022Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- pyJARM is a library for doing JARM fingerprinting using python☆50Mar 23, 2025Updated last year
- Picatrix is a library designed to help security analysts in a notebook environment, such as colab or jupyter.☆54Mar 26, 2025Updated last year
- Automatic detection engineering technical state compliance☆55Jul 7, 2024Updated last year
- Elastic Security detection content for Endpoint☆1,433May 20, 2026Updated last week
- Detection Ideas & Rules repository.☆178Sep 10, 2021Updated 4 years ago
- ⚠️ ARCHIVED**: This repository is no longer actively maintained. All Sigma rules are now managed and available in SIEM Rules☆13Mar 19, 2026Updated 2 months ago
- UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It …☆1,354Apr 16, 2026Updated last month