The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning. Learn more →
Top 7 Python Siem Projects
-
RedELK
Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
Digital-Forensics-Guide
Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.
-
impulse-xdr
Fully automated host & network intrusion detection platform. Detects malware from behavioural patterns rather than signatures and enables deeper visibility than legacy tools.
-
MISP-QRadar-Integration
The Project can be used to integrate QRadar with MISP Threat Sharing Platform
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
Sigma rules https://github.com/SigmaHQ/sigma its value, I get it. Here’s a post https://www.linkedin.com/posts/nasreddinebencherchali_detection-blueteam-sigma-activity-7104868070069817344-mn91?utm_source=share&utm_medium=member_desktop detailing that 31 Sigma rules from the Sigma repository are triggering on different stages of the attack as described here https://thedfirreport.com/2023/08/28/html-smuggling-leads-to-domain-wide-ransomware/
Project mention: What project ideas are there for a cybersecurity homelab? | /r/AskNetsec | 2023-06-04Play with RedELK for learning ELK and monitoring blue team activities - https://github.com/outflanknl/RedELK
If you're looking to learn on your own, try mikeroyal's digital forensics guide on Github. There's a lot of recommended resources there that'll speed you up. https://github.com/mikeroyal/Digital-Forensics-Guide
Python Siem related posts
- Pql, a pipelined query language that compiles to SQL (written in Go)
- Sigma rules in real life
- Looking for feedback on a security-related project idea
- SOC SIEM Use Cases for First Internship
- Open Source SIEM Tools
- Detection Engineering Source Websites
- Scheduling query to look for whenever net group is ran.
-
A note from our sponsor - WorkOS
workos.com | 23 Apr 2024
Index
What are some of the best open-source Siem projects in Python? This list will help you:
Project | Stars | |
---|---|---|
1 | sigma | 7,598 |
2 | RedELK | 2,282 |
3 | Digital-Forensics-Guide | 1,335 |
4 | PurpleCloud | 473 |
5 | OpenSIEM-Logstash-Parsing | 174 |
6 | impulse-xdr | 96 |
7 | MISP-QRadar-Integration | 36 |
Sponsored