An open-source, real-time Security Information & Event Management tool based on big data technologies, providing a scalable, advanced security analytics framework.
Siembol provides a scalable, advanced security analytics framework based on open-source big data technologies. Siembol normalizes, enriches, and alerts on data from various sources, which allows security teams to respond to attacks before they become incidents.
Siembol is an open-source, real-time security information and event management tool developed in-house at G-Research.
Siembol's use cases:
Siembol can be used to centralize both security data collecting and the monitoring of logs from different sources.
Siembol can be used as a tool for detecting attacks or leaks by teams responsible for the system platform.
For more extensive introduction, visit: Introduction.
To install locally, visit: Quickstart Guide.
If you wish to contribute to Siembol, first read: Contribution Guide.
G-Research has adopted a Code of Conduct that is to be honored by everyone who participates in the Siembol community formally or informally. Please read the full text: Code of Conduct
All notable changes to this project are documented in this file: CHANGELOG
To learn more about Siembol's UI, visit: Siembol UI.
There you will find guides on:
To explore Siembol's services, visit: Siembol services.
There you will find guides on:
To deploy Siembol, refer to: Siembol deployment.
There you will find guides on: