Free
Alien Vault Ossim
A tool collection for filtering and visualizing logon events, designed for experienced DFIR specialists in threat hunting and incident response.
SIEM
Security Information and Event Management solutions for log management and security monitoring
Try these 57 AI SIEM Tools
Free
Amazon Detective
Democratizing graph-based security analysis by collecting assets and relationships from services and systems into an intuitive graph view.
Free
Alterix
A Security Information and Event Management (SIEM) system with a focus on security and minimalism.
Free
Free
AWS CloudTrail
A dynamic GUI for advanced log analysis, allowing users to execute SQL queries on structured log data.
Free
aws-logsearch
Graylog offers advanced log management and SIEM capabilities to enhance security and compliance across various industries.
Free
Cowralyze
A compliant audit log tool that provides a searchable, exportable record of read/write events.
Free
ElastAlert
Logdissect is a CLI utility and Python library for analyzing log files and other data.
Free
Elastic Security
SysmonSearch makes event log analysis more effective by aggregating Microsoft Sysmon logs and providing detailed analysis through Elasticsearch and Kibana.
Free
ELAT (Event Log Analysis Tool)
A Command Line Map-Reduce tool for analyzing cowrie log files over time and creating visualizations and statistics.
Free
Elastic
A compliant audit log tool that provides a searchable, exportable record of read/write events.
Free
Event Query Language (EQL)
A tool for advanced HTTPD logfile security analysis and forensics, implementing various techniques to detect attacks against web applications.
Free
Graylog
Apache Metron is a centralized tool for security monitoring and analysis that integrates various open-source big data technologies.
Free
GrokEVT
Access a repository of Analytic Stories and security guides mapped to industry frameworks, with Splunk searches, machine learning algorithms, and playbooks for threat detection and response.
Free
HoneyView
A pure Python parser for Windows Event Log files with access to File and Chunk headers, record templates, and event entries.
Free
HonnyPotter
Track user activity and API usage on AWS and in hybrid and multicloud environments.
Free
IBM QRadar
RedELK enhances Red Team operations with SIEM capabilities to monitor and alert on Blue Team activities.
Free
LastActivityView
A Command Line Map-Reduce tool for analyzing cowrie log files over time and creating visualizations and statistics.
Free
LogRhythm Axon
A tool collection for filtering and visualizing logon events, designed for experienced DFIR specialists in threat hunting and incident response.
Free
Log Parser Lizard
A cloud-native SIEM platform that provides security analytics, intuitive workflow, and simplified incident response to help security teams defend against cyber threats.
Free
LogESP
A framework for generating log events without the need for infrastructure, allowing for simple, repeatable, and randomized log event creation.