Versions

Description

Prelude-SIEM

Prelude-SIEM is brought to you by CS (http://www.c-s.fr) under GPLv2 license : https://www.prelude-siem.org

Prelude is an agentless, universal, and hybrid security information and event management (SIEM) system. Prelude collects, normalizes, sorts, aggregates, correlates and reports all security-related events independently of the product brand or license. Security events are normalized to an IDMEF format, allowing native support with almost all security related event from an IT equipment.

While a malicious user (or software) may be able to evade the detection of a single IDS (NIDS, HIDS, etc.), it becomes exponentially more difficult to get around the defenses when there are multiple protection mechanisms. Prelude SIEM comes with a large set of sensors, each of them monitoring different kind of events. Prelude permits alert collection to WAN scale, whether its scope covers a city, a country, a continent or the world.

Prelude claims that it is a SIEM system capable of inter-operating with all the systems available on the market. It is natively compatible with: AuditD, Nepenthes, NuFW, OSSEC, Pam, Samhain, Sancp, Snort, and Suricata but anyone can write its own sensors or utilize some of the 3rd party sensors that are available, given Prelude's opened APIs and librairies.

Repository

https://github.com/Prelude-SIEM-Contrib/Prelude-SIEM-docs.git

Project Slug

prelude-siem

Last Built

2 years, 2 months ago passed

Maintainers

Home Page

https://www.prelude-siem.org

Badge

Tags

log, security, parsing, alert, cybersecurity, siem

Project Privacy Level

Public

Short URLs

prelude-siem.readthedocs.io
prelude-siem.rtfd.io

Default Version

latest

'latest' Version

master