Alternatives and similar repositories for ELK

Users that are interested in ELK are comparing it to the libraries listed below

• enotspe / fortinet-2-elasticsearch
  Fortinet products logs to Elasticsearch
  ☆98Updated 8 months ago
• ActionScripted / elastic-kibana-postfix
  Kibana dashboards, visualizations and searches for Postfix
  ☆42Updated last year
• Graylog2 / graylog-plugin-threatintel
  Graylog Processing Pipeline functions to enrich log messages with IoC information from threat intelligence databases
  ☆154Updated last year
• airbus-cyber / graylog-plugin-logging-alert
  Alert notification plugin for Graylog to generate log messages from alerts
  ☆25Updated last month
• siemonster / logstash
  Example configuration files for Logstash
  ☆44Updated 5 years ago
• CityBaseInc / SIAC
  SIAC is an enterprise SIEM built on open-source technology.
  ☆114Updated 6 years ago
• HKcyberstark / TI_Mod
  Threat Intelligence with Elastic - Minemeld integration with Elasticsearch
  ☆19Updated 4 years ago
• PolitoInc / DNS-ELK
  Experimental DNS logs pipeline based on Pi-hole dnsmasq logs, ELK stack, and Filebeat. Sample configs included.
  ☆30Updated last year
• cs3gallery / meraki_logstash
  Meraki MX Logstash configurations
  ☆16Updated 2 years ago
• shadow-box / Palo-Alto-Networks-ELK-Stack
  Configuration for a Palo Alto Networks fed ELK Stack with Visualizations
  ☆73Updated 6 years ago
• averydiversifiedtech / ossec-wazuh-manager-zabbix
  Zabbix Templates and scripts to monitor OSSEC or Wazuh Manager Intrusion Detection
  ☆13Updated 5 years ago
• branchnetconsulting / wazuh-tools
  Useful scripts for those administering Wazuh
  ☆83Updated this week
• elastic / ecs-mapper
  Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash
  ☆54Updated 3 years ago
• airbus-cyber / graylog-plugin-alert-wizard
  Alert Wizard plugin for Graylog to manage the alert rules
  ☆48Updated this week
• shadonet / pfSense-pkg-zeek
  Zeek (formerly Bro) Network Security Monitor package for pfSense router/firewall
  ☆45Updated 3 years ago
• robcowart / synesis_lite_snort
  Snort IDS/IPS log analytics using the Elastic Stack.
  ☆86Updated 3 years ago
• empow / logstash-parsers
  ☆38Updated 5 years ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆54Updated last week
• thomaspatzke / logstash-linux
  Logstash Configuration for Linux Logs (Authentication, Apache, Mail)
  ☆93Updated 5 years ago
• wazuh / wazuh-puppet
  Wazuh - Puppet module
  ☆48Updated this week
• HKcyberstark / wazuh-ecs
  Parse wazuh[HIDS] alerts into ECS mapping using Filebeat
  ☆27Updated 4 years ago
• lamw / vcenter-authn-authz-log-examples
  Log examples of vCenter Server Authentication & Authorization activities
  ☆16Updated 6 years ago
• reighnman / Graylog_Content_Pack_Active_Directory_Auditing
  ☆36Updated last year
• Homas / ioc2rpz
  ioc2rpz is a place where threat intelligence meets DNS.
  ☆109Updated 4 months ago
• airbus-cyber / graylog-plugin-aggregation-count
  Alert condition plugin for Graylog to perform aggregation
  ☆20Updated 2 years ago
• PCextreme / logstash-grok-patterns
  LogStash Grok patterns
  ☆14Updated 8 years ago
• elastiflow / elastiflow_for_elasticsearch
  A solution for using the ElastiFlow Unified Collector with the Elastic Stack (Elasticsearch and Kibana).
  ☆23Updated 3 months ago
• StamusNetworks / KTS7
  Kibana 7 Templates for Suricata IDPS Threat Hunting
  ☆40Updated 2 years ago
• Graylog2 / graylog-guide-syslog-linux
  How to send syslog from Linux systems into Graylog
  ☆80Updated 6 years ago
• ThoZed / graylog-cp-watchguard
  Graylog Content Pack for Watchguard Fireware Logging
  ☆37Updated 5 years ago