matano
Security data lake
A cloud-native security data lake built on AWS to normalize and analyze unstructured security logs at scale
Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
1k stars
22 watching
101 forks
Language: Rust
last commit: 4 months ago
Linked from 6 awesome lists
alertingapache-icebergawsaws-securitybig-datacloudcloud-nativecloud-securitycybersecuritydetection-engineeringdfirlog-analyticslog-managementrustsecopssecuritysecurity-toolsserverlesssiemthreat-hunting
runacapital/awesome-oss-alternatives
sbilly/awesome-security
meirwah/awesome-incident-response
0x4d31/awesome-threat-detection
4ndersonlin/awesome-cloud-security
infosecb/awesome-detection-engineeringRelated projects:
| Repository | Description | Stars |
|---|---|---|
 endgameinc/varna | An AWS CloudTrail monitoring tool for alerting on suspicious activity | 51 |
 a3sal0n/cyberthreathunting | A collection of tools and resources for threat hunters to identify and respond to cyber threats. | 855 |
 sbasu7241/aws-threat-simulation-and-detection | This repository documents the simulation and detection of various AWS attack scenarios using Stratus Red Team and SumoLogic for logging and analysis. | 282 |
 azure/cloud-katana | Automates security assessment and research in cloud-native environments using event-driven serverless computing | 250 |
 matamorphosis/scrummage | A platform for searching and analyzing publicly available online data to detect potential security threats | 512 |
 opensoc/opensoc | A centralized platform for security monitoring and analysis utilizing open-source big data technologies to integrate log aggregation, packet capture indexing, advanced analytics, and threat intelligence. | 572 |
 nathanmarz/cascalog | A library for data processing and querying on large datasets without the need for Hadoop expertise | 1,376 |
 aviate-labs/stable.mo | Provides data structures and utilities for working with stable, persistent data in multiple programming languages. | 1 |
 trustoncloud/threatmodel-for-aws-s3 | An inventory of common attack scenarios on Amazon S3 storage and recommended countermeasures | 151 |
 huntlabs/hunt-net | A high-performance network library for the D programming language, providing an event-driven asynchronous implementation and codec support for TCP, UDP, and other protocols. | 20 |
 mikependon/repodb | An ORM library designed to simplify .NET data access by providing a balance between micro-ORM and full-ORM functionality. | 1,697 |
 duo-labs/cloudmapper | Analyzes AWS environments to identify security issues and network configurations. | 6,003 |
 davidonzo/threat-intel | Develops and shares cyber threat intelligence information in various formats for SOC/CSIRT/CERT use. | 148 |
 tenable/terrascan | Detects security vulnerabilities and compliance issues in infrastructure code before provisioning cloud-native infrastructure. | 4,766 |
| huntlabs/hunt | A refined core library providing building blocks for asynchronous and concurrent programming in the D programming language. | 95 |