#Log-analysis

Showing 44 of 44 repositories tagged #log-analysis, ranked by stars

wazuh
wazuh
wazuh

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Score
100
★ 16.1k ⑂ 2.4k +4/day
C++
tstack
tstack
lnav

Log file navigator

Score
100
★ 10.4k ⑂ 389 +19/day
C++
Graylog2
Graylog2
graylog2-server

Free and open log management

Score
94
★ 8.1k ⑂ 1.1k +1/day
Java
multiprocessio
multiprocessio
datastation

App to easily query, script, and visualize data from every database, file, and API.

Score
50
★ 3.0k ⑂ 112
TypeScript
dimonomid
dimonomid
nerdlog

Nerdlog: fast, remote-first, multi-host TUI log viewer with timeline histogram and no central server

Score
50
★ 1.5k ⑂ 39 +1/day
Go
logpai
logpai
loglizer

A machine learning toolkit for log-based anomaly detection [ISSRE'16]

Score
0
★ 1.4k ⑂ 438
Jupyter Notebook
Lifailon
Lifailon
lazyjournal

TUI for viewing logs from journald, auditd, file system, Docker and Podman containers, Compose stacks and Kubernetes pods with support for log highlighting and several filtering modes.

Score
100
★ 1.3k ⑂ 32 +9/day
Go
wazuh
wazuh
wazuh-docker

Wazuh - Docker containers

Score
89
★ 1.1k ⑂ 564 +2/day
Shell
salesforce
salesforce
logai

LogAI - An open-source library for log analytics and intelligence

Score
100
★ 816 ⑂ 122
Python
mir1ce
mir1ce
Hawkeye

Windows应急响应工具---Hawkeye(鹰眼)。集Windows日志分析,进程扫描,主机信息于一体的综合应急响应分析工具

Score
0
★ 689 ⑂ 28
utmstack
utmstack
UTMStack

Enterprise-ready SIEM, SOAR and Compliance powered by real-time correlation and threat intelligence.

Score
67
★ 577 ⑂ 75 +1/day
TypeScript
turbot
turbot
tailpipe

select * from logs; Tailpipe is an open source SIEM for instant log insights, powered by DuckDB. Analyze millions of events in seconds, right from your terminal.

Score
86
★ 567 ⑂ 14
Go
wazuh
wazuh
wazuh-ruleset

Wazuh - Ruleset

Score
56
★ 523 ⑂ 232
Python
wazuh
wazuh
wazuh-dashboard-plugins

Plugins for Wazuh Dashboard

Score
78
★ 516 ⑂ 236
TypeScript
Graylog2
Graylog2
graylog-docker

Official Graylog Docker image

Score
100
★ 433 ⑂ 130 +1/day
Shell
wazuh
wazuh
wazuh-ansible

Wazuh - Ansible playbook

Score
72
★ 415 ⑂ 232 +1/day
Shell
HoloInsight
HoloInsight
holoinsight

HoloInsight is a cloud-native observability platform with a special focus on real-time log analysis and AI integration.

Score
71
★ 351 ⑂ 70
Java
wazuh
wazuh
wazuh-documentation

Wazuh - Project documentation

Score
83
★ 265 ⑂ 394
JavaScript
Graylog2
Graylog2
graylog-ansible-role

Ansible role which installs and configures Graylog

Score
57
★ 222 ⑂ 128
Jinja
ingyamilmolinar
ingyamilmolinar
doctorgpt

DoctorGPT brings GPT into production for application log error diagnosing!

Score
100
★ 210 ⑂ 13
Go
slrbl
slrbl
Intrusion-and-anomaly-detection-with-machine-learning

Machine learning algorithms applied on log analysis to detect intrusions and suspicious activities.

Score
61
★ 172 ⑂ 75
Python
dogoncouch
dogoncouch
logdissect

CLI utility and Python module for analyzing log files and other data.

Score
0
★ 160 ⑂ 23
Python
calebevans
calebevans
cordon

Reduce logs to their semantic anomalies

Score
43
★ 158 ⑂ 7 +1/day
Python
hsr88
hsr88
log-voyager

Analyze huge log files (10GB+) instantly in your browser. Zero upload, 100% local processing. Features JSON prettifier, regex filtering, and bookmarks.

Score
67
★ 116 ⑂ 5
TypeScript
ait-aecid
ait-aecid
logdata-anomaly-miner

This tool parses log data and allows to define analysis pipelines for anomaly detection. It was designed to run the analysis with limited resources and lowest possible permissions to make it suitable for production server use.

Score
0
★ 92 ⑂ 23
Python
wazuh
wazuh
wazuh-api

Wazuh - RESTful API

Score
28
★ 81 ⑂ 63
JavaScript
bad-antics
bad-antics
nullsec-logreaper

🪓 High-Speed Log Analysis & Forensics Tool - Part of NullSec Toolkit

Score
44
★ 80 ⑂ 6
C
workbackai
workbackai
traceback

🐞 VS Code extension to debug tracing logs 🦀

Score
0
★ 71 ⑂ 0
TypeScript
mentat-is
mentat-is
gulp

g(ULP) core backend and plugins

Score
50
★ 67 ⑂ 8 +1/day
Python
bilalimamoglu
bilalimamoglu
sift

Turn noisy command output into a short, actionable first pass for coding agents.

Score
33
★ 62 ⑂ 3
TypeScript
sergey-su
sergey-su
logjoint

LogJoint log viewer core. Viewer plugins for publicly-available domains.

Score
50
★ 56 ⑂ 14
C#
Hacking-Notes
Hacking-Notes
BlueTeam

This repo shares blue team security notes and resources for detecting and preventing cyber attacks. Topics covered include email, file, log, malware, memory forensics, and packet analysis.

Score
11
★ 54 ⑂ 6
georgezouq
georgezouq
awesome-saas

A curated list for SaaS (Software as a services)

Score
100
★ 54 ⑂ 32
avivl
avivl
cloud-sre-agent

An autonomous SRE agent that monitors cloud logs across multiple platforms, leveraging AI models from various providers to detect anomalies, perform root cause analysis, and automate remediation by creating GitHub Pull Requests.

Score
29
★ 46 ⑂ 6 +1/day
Go
bobby-tablez
bobby-tablez
Enable-All-The-Logs

This script enhances endpoint logging telemetry for the purpose of advanced malware threat detection or for building detections or malware analysis. This can be used in production, however you might want to tune the GPO edits as needed.

Score
39
★ 43 ⑂ 10
PowerShell
CortisolAI
CortisolAI
cortisol

Accurately forecast log costs pre-production with Cortisol for Datadog, New Relic, Grafana and GCP Cloud Logging 💰📉

Score
14
★ 39 ⑂ 2
Python
VishApp
VishApp
multiagent-debugger

Multi-Agent Debugger: An AI-powered debugging system using CrewAI to orchestrate specialized agents that analyze logs, trace code, and uncover root causes across your stack — powered by LLM providers.

Score
0
★ 37 ⑂ 5
Python
pauloremoli
pauloremoli
logana

Terminal log analyzer built in Rust with instant filtering, structured field parsing, compressed file support, Docker/OTel streaming, and MCP integration.

Score
0
★ 35 ⑂ 1
Rust
ethansilvas
ethansilvas
splunk-logs-and-investigations

Investigating attacks using Splunk Enterprise logs and creating SPL intrusion detection searches based on known attacker TTPs and anomaly behavior derived from statistical baselines

Score
6
★ 29 ⑂ 5
Baichuan-DI
Baichuan-DI
WinLog-Insight

WinLog Insight, an offline Windows log analyzer, gathers system, security and application logs. Its 90 built-in rules spot brute force, abnormal privilege escalation and other threats. It provides visual risk panels, real-time alerts and one-click PDF/Excel audit reports, storing all logs locally.

Score
33
★ 27 ⑂ 1
cristianzsh
cristianzsh
triager

Triage automation tool

Score
22
★ 22 ⑂ 2
Python
Lodoelama
Lodoelama
Columbia-University-Cybersecurity-Program

This repository documents my hands on experience and assignments during the Columbia University Cybersecurity Program. It includes home labs related to network security, penetration testing, and defensive security

Score
0
★ 16 ⑂ 4 +1/day
Shell
MrM8BRH
MrM8BRH
Defensive-Security-Hub

A curated collection of essential resources, tools, and references for Security Operations Center (SOC) analysts.

Score
17
★ 15 ⑂ 2
tatris-io
tatris-io
tatris

Time-aware Search and Storage System

Score
0
★ 13 ⑂ 6
Go
Related Topics
#incident-response#security#logging#compliance#intrusion-detection#cybersecurity#log-viewer#monitoring#pci-dss#security-hardening#vulnerability-detection#wazuh

© 2026 GitRepoTrend · GitHub repositories by topic · Updated weekly