Alternatives and similar repositories for logminer:

Users that are interested in logminer are comparing it to the libraries listed below

• morrigan / user-behavior-anomaly-detector
  User anomaly detector based on logs generated by Osquery framework and machine learning to process those logs.
  ☆33Updated 7 years ago
• salspaugh / splparser
  Simple parser for Splunk Processing Language (SPL) written in Python.
  ☆35Updated 6 years ago
• Anonymity94 / spl2dsl
  Convert Splunk SPL to Elasticsearch DSL with pegjs
  ☆13Updated 2 years ago
• NybbleHub / Bluekeep-Detection-Rule
  Bluekeep detection rule by using Apache Flink CEP (Complex Event Processing) Library and Markov Chain.
  ☆9Updated 5 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 8 years ago
• chenryn / ESPL
  Elastic Search Processing Language
  ☆49Updated 8 years ago
• query-ai / queryai-kibana-plugin
  Query.AI plugin for Kibana
  ☆13Updated 5 years ago
• NVISOsecurity / ee-outliers
  Open-source framework to detect outliers in Elasticsearch events
  ☆208Updated last year
• apache / metron-bro-plugin-kafka
  Apache Metron
  ☆59Updated 4 years ago
• sshahriyar / totalads
  Total Anomaly Detection System for software logs and traces
  ☆10Updated 9 years ago
• DjGorillaz / anomaly-detection-and-monitoring
  Anomaly detection and monitoring software
  ☆20Updated 6 years ago
• ssallys / p3
  An open source pcap packet and NetFlow file analysis tool using Hadoop MapReduce and Hive.
  ☆43Updated 11 years ago
• AlkenePan / awesome-bro
  Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))
  ☆31Updated 4 years ago
• EddiePi / Spell
  Auto extract key in log files
  ☆21Updated 6 years ago
• ElasticSA / elsec_dr2an
  Script to create MITRE ATT&CK Navigator layers from the annotated detection rules in Elastic Security (Kibana).
  ☆20Updated last year
• Egida-Kassandra / kassandra
  Analysis of HTTP traffic and detection of anomalous user behavior in allowed actions. UEBA system.
  ☆22Updated 2 years ago
• gnuhpc / kibana-multitenant-proxy
  A proxy behind nginx while before kibana (4.x, 5.x) to provide data isolation for different users
  ☆24Updated 5 years ago
• uniberg / kbn_sankey_vis
  Sankey diagram for Kibana visualize.
  ☆30Updated 4 months ago
• childe / dopey
  ES索引的维护脚本, 每天close delete reallocate optimize索引
  ☆23Updated 5 years ago
• theY4Kman / parsuricata
  Parse Suricata rules
  ☆12Updated last year
• tianyulab / ThreatDetectionRules
  威胁检测规则集
  ☆15Updated 5 years ago
• opendistro-for-elasticsearch / anomaly-detection
  A machine learning plugin in Open Distro for real time anomaly detection on streaming data.
  ☆80Updated 2 years ago
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆30Updated last week
• jazwiecki / neo4j-cve
  Graph database version of the CVE database
  ☆25Updated 2 years ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated 2 years ago
• CrySyS / bro-step7-plugin
  A proof of concept implementation of the Siemens S7 protocol analyser for the Bro IDS.
  ☆16Updated 8 years ago
• sethhall / domain-tld
  Zeek script library for getting the effective TLD of a domain.
  ☆13Updated 11 months ago
• malice-plugins / yara
  Malice Yara Plugin
  ☆30Updated 5 years ago
• 0xrawsec / gene-rules
  ☆39Updated 2 years ago
• CSIRT-MU / AIDA-Framework
  A framework for the Analysis of Intrusion Detection Alerts
  ☆17Updated 3 years ago