substation
Security log processor
A toolkit for routing, normalizing, and enriching security event logs across the cloud
Substation is a toolkit for routing, normalizing, and enriching security event and audit logs.
329 stars
8 watching
20 forks
Language: Go
last commit: 7 days ago
Linked from 6 awesome lists
automationawsloggingmonitoringobservabilitysecurity
oxnr/awesome-bigdata
sbilly/awesome-security
anaibol/awesome-serverless
pditommaso/awesome-pipeline
0x4d31/awesome-threat-detection
manuzhang/awesome-streamingRelated projects:
| Repository | Description | Stars |
|---|---|---|
 jbrisbin/lager_amqp_backend | A backend system for sending logging messages to an AMQP exchange based on log level and routing key | 33 |
 logsem/aneris | A toolset for developing and verifying distributed systems using separation logic | 33 |
 dcso/fever | A fast and extensible system for processing JSON events from security monitoring tools | 50 |
 syslog-ng/syslog-ng | A log processing and management system that can handle various input and output methods. | 2,139 |
 aws/aws-cloudtrail-processing-library | A Java client library to read and process CloudTrail log files in a fault-tolerant and scalable manner | 87 |
 stamusnetworks/selks | An integrated security monitoring platform using Suricata and Elasticsearch to analyze network traffic and alerts | 1,479 |
 sigmahq/sigma | A standardized format for describing log events to facilitate detection and analysis of security threats | 8,371 |
| stamusnetworks/kts | Customizable dashboards and visualizations for security monitoring and analysis using Suricata IDPS and the ELK stack. | 33 |
 tencent/bqlog | A high-performance logging system designed for multiple platforms and languages, optimized for real-time compression and low memory usage. | 224 |
 retracedhq/retraced | Provides a searchable, exportable record of read/write events | 358 |
 inconshreveable/log15 | A toolkit for structured logging in Go that provides an opinionated API and promotes best-practice logging. | 1,104 |
 sergiusthebest/plog | A portable and flexible C++ logging library with unique features such as CSV log format and wide string support. | 2,221 |
 elastic/logstash | A real-time data processing pipeline that transforms and sends data to a storage system | 75 |
 tersesystems/echopraxia | A structured logging API for Java applications with conditional and contextual logging features | 54 |
 airbnb/streamalert | An automated log analysis and alerting system for real-time threat detection and incident response. | 2,861 |