🐳 Elastic Stack (ELK) v8+ on Docker with Compose. Pre-configured out of the box to enable Logging, Metrics, APM, Alerting, ML, and SIEM features. Up with a Single Command.
Basic simple integration around falco and wazuh into k8s cluster with daemonset deployment.
Network-Based Intrusion Detection System - dev/deploy-ment
Containerized—ROOTLESS—syslog-ng service that securely forwards system, firewall, and security logs to SentinelOne's Data Lake via HEC API. Optimized for performance, security, and enterprise deployment.
Kibana logging for DVWA
Conteneur Docker tout-en-un pour l'investigation numérique, incluant des outils préinstallés pour l'analyse forensique de disques, mémoire, malwares et appareils mobiles.
Add a description, image, and links to the siem topic page so that developers can more easily learn about it.
To associate your repository with the siem topic, visit your repo's landing page and select "manage topics."