Alternatives and similar repositories for logminer

Users that are interested in logminer are comparing it to the libraries listed below

• salspaugh / splparser
  Simple parser for Splunk Processing Language (SPL) written in Python.
  ☆35Updated 7 years ago
• morrigan / user-behavior-anomaly-detector
  User anomaly detector based on logs generated by Osquery framework and machine learning to process those logs.
  ☆33Updated 8 years ago
• NVISOsecurity / ee-outliers
  Open-source framework to detect outliers in Elasticsearch events
  ☆209Updated 2 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 9 years ago
• query-ai / queryai-kibana-plugin
  Query.AI plugin for Kibana
  ☆13Updated 6 years ago
• Anonymity94 / spl2dsl
  Convert Splunk SPL to Elasticsearch DSL with pegjs
  ☆13Updated 3 years ago
• apache / metron-bro-plugin-kafka
  Apache Metron
  ☆60Updated 5 years ago
• chenryn / ESPL
  Elastic Search Processing Language
  ☆50Updated 9 years ago
• Egida-Kassandra / kassandra
  Analysis of HTTP traffic and detection of anomalous user behavior in allowed actions. UEBA system.
  ☆24Updated 2 years ago
• corelight / got_zoom
  A Zeek package that detects Zoom logins and meeting joins
  ☆12Updated 5 years ago
• adamkusey / securitai-lstm-model
  ☆62Updated 8 years ago
• m-chrome / py-suricataparser
  Pure python parser for Snort/Suricata rules.
  ☆33Updated last year
• 0xrawsec / gene-rules
  ☆42Updated 3 years ago
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆33Updated 2 weeks ago
• beave / sagan-rules
  Rule sets for Sagan
  ☆105Updated 4 years ago
• OpenSOC / opensoc-streaming
  Extensible set of Storm topologies and topology attributes for streaming, enriching, indexing, and storing telemetry in Hadoop.
  ☆134Updated last year
• OpenSOC / opensoc-ui
  User interface for OpenSOC
  ☆100Updated 10 years ago
• Lab41 / magichour
  Security log file challenge
  ☆28Updated 9 years ago
• logpai / Log3C
  Log-based impactful problem identification using machine learning [FSE'18]
  ☆176Updated 2 years ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆42Updated 2 years ago
• ssallys / p3
  An open source pcap packet and NetFlow file analysis tool using Hadoop MapReduce and Hive.
  ☆44Updated 12 years ago
• opendistro-for-elasticsearch / anomaly-detection
  A machine learning plugin in Open Distro for real time anomaly detection on streaming data.
  ☆80Updated 3 years ago
• ExpediaGroup / adaptive-alerting
  Anomaly detection for streaming time series, featuring automated model selection.
  ☆210Updated last year
• ElasticSA / elsec_dr2an
  Script to create MITRE ATT&CK Navigator layers from the annotated detection rules in Elastic Security (Kibana).
  ☆20Updated 2 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆37Updated 3 years ago
• Kirtar22 / ATTACK-Threat_Intel
  Graph Representation of MITRE ATT&CK's CTI data
  ☆50Updated 6 years ago
• intezer / ssdeep-elastic
  An example for implementation of ssdeep similarity search optimized with elasticsearch
  ☆34Updated 8 years ago
• kotlaluk / spl-parser
  Parser for Splunk's Search Processing Language (SPL) syntax highlighting
  ☆20Updated 5 years ago
• kiwiz / esquery
  Elasticsearch querying library
  ☆20Updated 6 years ago
• OTRF / openhunt
  ☆35Updated 4 years ago