TheHive
deequ
Our great sponsors
TheHive | deequ | |
---|---|---|
24 | 17 | |
3,166 | 3,119 | |
2.3% | 1.5% | |
0.0 | 7.5 | |
over 1 year ago | 7 days ago | |
Scala | Scala | |
GNU Affero General Public License v3.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
TheHive
-
What are your go-to tools for task management and/or case work?
I had a quick test with the hive looks pretty nice. https://thehive-project.org/
-
Taking Notes: What are your techniques as security professionals?
Also look into hive. Lots of people are moving that direction. https://thehive-project.org/
-
Free Tech Tools and Resources - Connection Tracing, Throttling Tool, Log Search & More
TheHive is a versatile open-source solution for streamlining the investigation and prompt handling of security incidents. Seamlessly integrates with MISP to facilitate the transition from event analysis to investigation initiation, enabling efficient synchronization and export for collaborative threat detection and response. Moreover, coupling TheHive with Cortex empowers security professionals to efficiently analyze up to hundreds of observables. Timely-Lychee-5204 describes it as, "an open-source and scalable Security Incident Response Platform designed for handling incidents efficiently."
-
Monthly Security Checklist
TheHive/Cortex - https://thehive-project.org/
- Does anyone have experience with self-hosted endpoint security solutions?
-
Software for recording security incidents?
i recommend TheHive for creating incident tickets. it is opensource but there is paid one offered by StrangeBee
-
Warning: Do not use Hive Social
Also unrelated to TheHive project, a security incident response tool.
https://thehive-project.org/
- New blue team
- 22 OSINT service for vulnerability detection that can be utilized in IT security.
-
Incident Response: What tool workflow do you use to collaborate on and document IR?
I haven't done any IR myself, but I was thinking something like TheHive Project (open source) or similar proprietary IR toolsets would be common. But over on r/blueteamsec I just saw this post, where people claimed to be using:
deequ
-
[Data Quality] Deequ Feedback request
There's no straightforward way to drop and rerun a metric collection. For example, say you detect a problem in your data. You fix it, rerun the pipeline, and replace the bad data with the good. You'd want your metrics history to reflect the true state of your data. But the "bad run" cannot be dropped. Issue
-
Thoughts on a business rules engine
I had similar requirements for QA reporting on large and diverse data sets. I implemented data check pipelines, with rules in AWS Deequ (https://github.com/awslabs/deequ) running on an Apache Spark cluster. The Deequ worked well for me, but there were a few cases where I opted to write the rule checks in the data store to improve throughput (i.e. SQL checks on critical data elements on the database).
-
Building a data quality solution for devs and business people
Hey all! At the companies where I've worked as a developer, I've found that business stakeholders typically want a concrete way to check and assure the quality of data that pipelines are producing, before other downstream systems and users get impacted. I've tested solutions like Deequ, but I found that it made building compliance and data rules a bit more complicated and put a greater emphasis on developers to get the rules right that business was expecting. I also experienced issues with running checks in parallel and getting row level details about the failures.
-
deequ VS cuallee - a user suggested alternative
2 projects | 30 Nov 2022
- November 15-19, 2022 FLiP Stack Weekly
- What are your favourite GitHub repos that shows how data engineering should be done?
- Well designed scala/spark project
-
Soda Core (OSS) is now GA! So, why should you add checks to your data pipelines?
GE is arguably the most well known OSS alternative to Soda Core. The third option is deequ, originally developed and released in OSS by AWS. Our community has told us that Soda Core is different because itโs easy to get going and embed into data pipelines. And it also allows some of the check authoring work to be moved to other members of the data team. I'm sure there are also scenarios where Soda Core is not the best option. For example, when you only use Pandas dataframes or develop in Scala.
-
Congrats on hitting the v1 milestone, whylabs! You're r/MLOps OSS tool of the month!
I wonder how this compares with tools like DeeQu (https://github.com/awslabs/python-deequ - requires Spark) or Pandas Profiling? One plus side I can see is that it doesn't require Apache Spark to run profiling (though a quick look at the code indicates that they are working on Spark support) and can work with real time systems.
-
What companies/startups are using Scala (open source projects on github)?
There are so many of them in big data, e.g. Kafka, Spark, Flink, Delta, Snowplow, Finagle, Deequ, CMAK, OpenWhisk, Snowflake, TheHive, TVM-VTA, etc.
What are some alternatives?
Aurora-Incident-Response - Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders
soda-sql - Data profiling, testing, and monitoring for SQL accessible data.
velociraptor - Digging Deeper....
azure-kusto-spark - Apache Spark Connector for Azure Kusto
grr - GRR Rapid Response: remote live forensics for incident response
dbt-data-reliability - dbt package that is part of Elementary, the dbt-native data observability solution for data & analytics engineers. Monitor your data pipelines in minutes. Available as self-hosted or cloud service with premium features.
Wazuh - Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
Quill - Compile-time Language Integrated Queries for Scala
dislocker - FUSE driver to read/write Windows' BitLocker-ed volumes under Linux / Mac OSX
BigDL - Accelerate local LLM inference and finetuning (LLaMA, Mistral, ChatGLM, Qwen, Baichuan, Mixtral, Gemma, etc.) on Intel CPU and GPU (e.g., local PC with iGPU, discrete GPU such as Arc, Flex and Max). A PyTorch LLM library that seamlessly integrates with llama.cpp, HuggingFace, LangChain, LlamaIndex, DeepSpeed, vLLM, FastChat, ModelScope, etc.
Kuiper - Digital Forensics Investigation Platform
re_data - re_data - fix data issues before your users & CEO would discover them ๐