Rust Siem

Open-source Rust projects categorized as Siem
Edit details
Rust Security security-tools Linux mcp
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured

Top 7 Rust Siem Projects

Rust logo
Siem

  1. matano

    Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS

  2. SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo

  3. laurel

    Transform Linux Audit logs for SIEM usage

  4. rustinel

    Open-source endpoint detection engine for Windows and Linux using ETW, eBPF, Sigma, YARA, IOCs, and ECS NDJSON alerts.

    Project mention: Open-source endpoint detection engine for Windows and Linux | news.ycombinator.com | 2026-05-11

  5. wirken

    The switchboard for the agent era. Per-channel isolation, encrypted credential vault, per-session hash-chained audit log. Single static Rust binary.

    Project mention: Wirken: Secure AI agent gateway. Encrypted vault. Single static binary | news.ycombinator.com | 2026-05-01

  6. vellaveto

    Agentic security control plane for MCP and AI agent tool calls. MCP-native policy gateway with topology discovery and audit. (by paolovella)

    Project mention: Show HN: VellaVeto – fail-closed gateway for MCP tool calls | news.ycombinator.com | 2026-03-28

  7. sigil

    AI Security Posture Management (AI-SPM) for developer machines: scores AI coding agent guard surfaces (Claude Code, Codex, Gemini CLI, Cursor — hooks, permissions, sandboxes) and ships hash-anchored events to your SIEM. (by Ju571nK)

    Project mention: "It's not a bug, it's spec": a zero-click RCE in AI coding agents that three vendors won''t patch | dev.to | 2026-06-02

    That's the layer I've been poking at. I've been building a small open-source thing (Sigil) that watches agent config files like mcp.json and .claude/settings.json, scores the risk, and emits an event to your SIEM — it doesn't block, it just tells you when the permission state changed while your hands were off the keyboard. Across a fleet of machines that shows up as triage-able alerts — the silent change, made visible:

  8. Security-Log-Analyser

    Production-grade security log analyser with CVSS 3.1 scoring and Groq AI integration. Built with Rust workspace architecture for fast incremental compilation. Detects 10+ threat types including SQL injection, XSS, malware, and port scanning.

    Project mention: Security log analyser in Rust with CVSS 3.1 scoring and AI threat detection | news.ycombinator.com | 2026-03-14
NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

Rust Siem discussion

Log in or Post with

Index

What are some of the best open-source Siem projects in Rust? This list will help you:

# Project Stars
1 matano 1,665
2 laurel 832
3 rustinel 179
4 wirken 118
5 vellaveto 6
6 sigil 6
7 Security-Log-Analyser 3

Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com

Did you know that Rust is
the 3rd most popular programming language
based on number of references?

Loading...