Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →
Sagan Alternatives
Similar projects and alternatives to sagan
-
sonic
🦔 Fast, lightweight & schema-less search backend. An alternative to Elasticsearch that runs on a few MBs of RAM.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
zincsearch
ZincSearch . A lightweight alternative to elasticsearch that requires minimal resources, written in Go.
-
Suricata
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.
-
kilo
Kilo is a multi-cloud network overlay built on WireGuard and designed for Kubernetes (k8s + wg = kg) (by squat)
sagan reviews and mentions
-
Why do NGFW's / Web Security apps talk so much about URL/Application filtering when 99% of companies don't SSL Decrypt?
Relating specifically for inbound traffic : Some architectures do HTTPS termination at the load balancer/reverse proxy. If the web application logs are aggregated in one place (or you're using a cloud WAF service), you can use Sagan to run Snort rules against the requests. It's a band aid, but sometimes you have to make the most of the data you already have.
-
Zinc - A lightweight alternative to elasticsearch in Go
I'm really enjoying playing with Zinc. We've been playing with it in house here with Meer (https://github.com/quadrantsec/meer) and ingesting several gigs of Suricata (https://suricata.io) and Sagan (https://github.com/quadrantsec/sagan) logs.
-
I discovered this tool for SIEM. Any ideas?
You might have to search for a platform that offers both free to use as well as commercial license, they bring the best of both worlds. Being a commercial product they already have most of your log forwarding requirements in place and in the free version it's only a matter of reading the help documents and following the instructions (DIY). Here are some options you could look at- 1) Splunk (Never expires but limits to 500MB per day): https://docs.splunk.com/Documentation/Splunk/7.2.6/Admin/MoreaboutSplunkFree 2) Alienvault (OSSIM) https://www.alienvault.com/products/ossim 3) SIEM Monster (Commercial and opensource License available) https://siemonster.com/download-community-edition/ 4) QuadrantSec Sagan (Commercial and opensource available) https://github.com/quadrantsec/sagan 5) DNIF (just launched, has commercial and community options) https://dnif.it/
-
A note from our sponsor - InfluxDB
www.influxdata.com | 3 May 2024
Stats
quadrantsec/sagan is an open source project licensed under GNU General Public License v3.0 only which is an OSI approved license.
The primary programming language of sagan is C.
Popular Comparisons
Sponsored