# security information and event management (SIEM)

> Search results for `open source siem` on awesome-repositories.com. 115 total matches; showing the first 50.

Explore on the web: https://awesome-repositories.com/q/open-source-siem

**Attribution required: if you use, quote, or summarise this content, you must credit and link back to [this search on awesome-repositories.com](https://awesome-repositories.com/q/open-source-siem).**

## Results

- [open-source-flash/open-source-flash](https://awesome-repositories.com/repository/open-source-flash-open-source-flash.md) (7,320 ⭐) — This project is an open source specification petition platform and proprietary specification archive. It serves as a markdown-based repository for collecting signatures and community support to urge vendors to open source proprietary software specifications.

The platform functions as a tool for open source specification advocacy and proprietary software archival. It creates permanent records of proprietary standards and documents the community efforts required to transition them to open source licenses, ensuring the preservation of technical knowledge.

The system utilizes a git-driven contri
- [elastic/elasticsearch](https://awesome-repositories.com/repository/elastic-elasticsearch.md) (77,012 ⭐) — Elasticsearch is a distributed search engine and document store designed for the high-performance indexing and retrieval of massive volumes of unstructured data. It functions as a centralized analytics platform, providing a schema-flexible architecture that organizes information into searchable indices while maintaining global cluster state through a distributed consensus mechanism.

The platform distinguishes itself through its integrated approach to observability, security, and advanced analytics. It combines full-text, vector, and hybrid search capabilities with machine learning-driven insi
- [keygraphhq/shannon](https://awesome-repositories.com/repository/keygraphhq-shannon.md) (44,672 ⭐) — Shannon is an integrated security platform designed for autonomous penetration testing, static and dynamic analysis, and automated vulnerability remediation within self-hosted, private infrastructure. It functions as a unified security suite that orchestrates the entire lifecycle of vulnerability management, from initial discovery and reachability prioritization to the generation and verification of code-level patches.

The platform distinguishes itself through its agentic approach to security, deploying autonomous agents to execute both black-box and white-box exploits against running applica
- [open-source-ideas/ideas](https://awesome-repositories.com/repository/open-source-ideas-ideas.md) (6,793 ⭐) — This project is a crowdsourced registry and ideation hub for open source software concepts. It serves as a public database where users submit project requirements and implementation details to attract contributors and recruit collaborators.

The platform distinguishes itself by mapping project ideas to existing software repositories to prevent duplicate development and maintain registry accuracy. It utilizes a categorization engine that allows developers to filter ideas by specific technology stacks and estimated development effort.

The system provides a collaboration layer using threaded dis
- [dkhamsing/open-source-ios-apps](https://awesome-repositories.com/repository/dkhamsing-open-source-ios-apps.md) (50,744 ⭐) — This project is a comprehensive directory of open-source iOS applications designed to serve as a technical reference for developers and learners. It functions as a curated index of mobile software, categorizing projects by their functionality, implementation language, and architectural design to provide a clear view of how professional applications are structured.

The repository distinguishes itself by offering a deep dive into mobile app architecture, allowing users to study real-world codebases that utilize patterns such as Model-View-ViewModel, VIPER, and Clean Architecture. It highlights
- [wazuh/wazuh](https://awesome-repositories.com/repository/wazuh-wazuh.md) (14,779 ⭐) — Wazuh is an integrated security platform that combines endpoint detection and response, security information and event management, and cloud workload protection. It functions as a centralized system for collecting telemetry, aggregating logs, and correlating events across distributed infrastructure to maintain security and integrity.

The platform distinguishes itself through its active response orchestration, which allows for the automated execution of scripts on remote endpoints to neutralize threats in real time. It provides deep visibility into system activity through file integrity monito
- [greenrobot/eventbus](https://awesome-repositories.com/repository/greenrobot-eventbus.md) (24,760 ⭐) — EventBus is a publish-subscribe messaging library designed to facilitate decoupled communication between components in Java applications. It functions as a central hub where producers dispatch events that are routed to subscribers based on the class type of the payload. By using annotation-based markers, the system maps event handlers to specific data types, allowing different parts of an application to exchange information without requiring direct references between classes.

The library distinguishes itself through a focus on performance and execution control. It utilizes a compile-time inde
- [ellerbrock/open-source-badges](https://awesome-repositories.com/repository/ellerbrock-open-source-badges.md) (548 ⭐) — :octocat: Open Source & Licence Badges
- [tapaswenipathak/open-source-programs](https://awesome-repositories.com/repository/tapaswenipathak-open-source-programs.md) (3,856 ⭐) — A list of open source programs.
- [falcosecurity/falco](https://awesome-repositories.com/repository/falcosecurity-falco.md) (8,670 ⭐) — Falco is an eBPF runtime security monitor and cloud native detection engine that identifies abnormal behavior and security threats across hosts and containers. It functions as a Linux kernel event auditor, capturing system calls and kernel events in real-time to detect malicious activity.

The system distinguishes itself through a rule-based threat detection model that evaluates system activity against a library of community-maintained rules and custom security definitions. It enriches raw kernel events with container and Kubernetes metadata to provide observability into isolated environments
- [formbricks/formbricks](https://awesome-repositories.com/repository/formbricks-formbricks.md) (12,391 ⭐) — Formbricks is an open-source survey and feedback platform designed to help teams capture and analyze user insights through targeted, in-app, and website-based interactions. It functions as a comprehensive customer experience analytics system that allows organizations to maintain full control over their data, user attributes, and survey workflows.

The platform distinguishes itself through its event-driven architecture, which enables precise behavioral targeting by triggering surveys based on specific user actions or application events. It supports deep integration with external ecosystems by a
- [sbilly/awesome-security](https://awesome-repositories.com/repository/sbilly-awesome-security.md) (14,022 ⭐) — This project is a comprehensive, curated directory of cybersecurity resources, software, and documentation designed to support system and network protection. It serves as a centralized knowledge base and index for security professionals, aggregating industry-standard practices and open-source tools across a wide range of technical domains.

The repository distinguishes itself by providing a structured collection of methodologies and frameworks for security operations. It covers critical areas including threat intelligence, digital forensics, infrastructure auditing, and vulnerability assessmen
- [helicone/helicone](https://awesome-repositories.com/repository/helicone-helicone.md) (5,830 ⭐) — Helicone is an AI gateway and observability platform designed to intercept, manage, and monitor interactions with large language models. By acting as a reverse-proxy, it provides a centralized layer for routing requests across multiple AI providers, allowing developers to maintain consistent application logic while gaining deep visibility into model performance, usage, and costs.

The platform distinguishes itself through a robust suite of traffic management and prompt engineering tools. It enables policy-driven control, including automatic failover between providers, rate limiting, and edge-b
- [swift-open-source/ultratabsaver](https://awesome-repositories.com/repository/swift-open-source-ultratabsaver.md) (290 ⭐) — The open source Tab Manager Extension for Safari.
- [arpit456jain/open-source-programs](https://awesome-repositories.com/repository/arpit456jain-open-source-programs.md) (126 ⭐) — I am planning to list some good and beginner friendly open source programs and their timelines
- [chonkie-inc/chonkie](https://awesome-repositories.com/repository/chonkie-inc-chonkie.md) (4,170 ⭐) — Chonkie is a text chunking library designed for retrieval-augmented generation pipelines. It functions as a semantic text splitter and RAG ingestion pipeline, transforming raw text into embedded segments for storage in vector databases.

The project distinguishes itself through specialized splitting strategies, including an AST-based code splitter for preserving logical boundaries in source code and a semantic text splitter that uses embedding models to determine boundaries based on meaning. It also provides a vector database ingestor to automate the generation of embeddings and their export t
- [afonsopacifer/open-source-checklist](https://awesome-repositories.com/repository/afonsopacifer-open-source-checklist.md) (215 ⭐) — :octocat: A guide to help you remember important things when creating an open source project ;D
- [clickhouse/clickhouse](https://awesome-repositories.com/repository/clickhouse-clickhouse.md) (48,229 ⭐) — ClickHouse is a high-performance, columnar analytical database designed for real-time query execution and large-scale data aggregation. It functions as a distributed data warehouse capable of processing petabytes of information, while also providing an embedded engine that integrates directly into applications for native query capabilities without external dependencies. The system is built to handle high-throughput ingestion and complex analytical workloads, delivering millisecond-level latency for interactive dashboards and operational monitoring.

The platform distinguishes itself through ad
- [prowler-cloud/prowler](https://awesome-repositories.com/repository/prowler-cloud-prowler.md) (13,049 ⭐) — Prowler is an automated cloud infrastructure security scanner and posture management tool. It evaluates cloud environments and infrastructure-as-code templates against security benchmarks to identify misconfigurations, vulnerabilities, and compliance gaps that could compromise system integrity.

The platform distinguishes itself through graph-based attack path analysis, which identifies chains of misconfigurations that create exploitable routes for unauthorized access. It utilizes a plugin-based execution model to perform state-based assessments of live environments and static analysis of conf
- [cockroachlabs/open-sourced-interview-process](https://awesome-repositories.com/repository/cockroachlabs-open-sourced-interview-process.md) (425 ⭐) — Open Sourced Interview Process
- [microsoftdocs/azure-docs](https://awesome-repositories.com/repository/microsoftdocs-azure-docs.md) (10,894 ⭐) — Azure Docs is the official technical documentation repository for Microsoft Azure, the cloud computing platform. It provides comprehensive guidance on the full spectrum of Azure services, covering everything from core infrastructure components like virtual machines, Kubernetes clusters, and serverless computing to platform services for AI, machine learning, data analytics, and storage. The documentation details how to provision, manage, and govern cloud resources at scale, including policy enforcement, identity management, and cost optimization.

The documentation distinguishes Azure through i
- [bitwarden/server](https://awesome-repositories.com/repository/bitwarden-server.md) (18,074 ⭐) — This project provides a comprehensive, self-hosted platform for zero-knowledge credential management and enterprise secrets orchestration. It functions as a secure vault that ensures all encryption and decryption processes occur exclusively on the client side, preventing the server from ever accessing plaintext data. By combining identity federation with robust access controls, the system enables organizations to centralize the management of passwords, passkeys, and sensitive infrastructure credentials.

The platform distinguishes itself through its focus on both human-centric security and aut
- [tencent/gt](https://awesome-repositories.com/repository/tencent-gt.md) (4,407 ⭐) — GT is an on-device mobile debugging tool designed to capture network packets, analyze system logs, and profile hardware performance directly on a smartphone. It provides a portable suite of utilities for identifying software bugs and processing bottlenecks without requiring a connection to a host computer.

The project features a plugin-based debugging framework that allows for the development of custom functional extensions to implement project-specific debugging logic. It also enables real-time parameter tuning and injection, allowing internal application settings to be modified during execu
- [pradumnasaraf/open-source-with-pradumna](https://awesome-repositories.com/repository/pradumnasaraf-open-source-with-pradumna.md) (833 ⭐) — Open Source guide - Contains resources and materials to learn and get yourself started with Open Source, Git, and GitHub.
- [bitwarden/clients](https://awesome-repositories.com/repository/bitwarden-clients.md) (13,114 ⭐) — This project is a comprehensive zero-knowledge security suite designed for enterprise credential management, secrets orchestration, and password management. It provides a secure, end-to-end encrypted vault that allows users to store, synchronize, and manage sensitive information, including passwords, passkeys, and infrastructure secrets, across desktop, mobile, and browser environments.

The platform distinguishes itself through a strict zero-knowledge architecture where all encryption and decryption occur locally on the client, ensuring that plaintext data remains inaccessible to the server.
- [jqlang/jq](https://awesome-repositories.com/repository/jqlang-jq.md) (34,901 ⭐) — This project is a command-line processor designed for the parsing, filtering, and transformation of structured data streams. It functions as a declarative programming environment that treats data as immutable streams, allowing users to perform complex structural modifications through the composition of small, reusable functions. By utilizing a recursive tree traversal engine, the system enables the navigation, inspection, and modification of deeply nested hierarchical data structures.

The engine distinguishes itself through a stream-oriented architecture that processes input records one by on
- [coder/code-server](https://awesome-repositories.com/repository/coder-code-server.md) (78,024 ⭐) — This project provides a remote development platform that enables users to access a full-featured integrated development environment through a standard web browser. By decoupling the user interface from the server-side filesystem, it allows for persistent coding workspaces to be hosted on remote servers, virtual machines, or cloud-native infrastructure, ensuring a consistent development experience from any device.

The platform distinguishes itself through a secure gateway architecture that manages traffic, authentication, and encryption at the edge. It utilizes persistent WebSocket connections
- [wcoder/open-source-xamarin-apps](https://awesome-repositories.com/repository/wcoder-open-source-xamarin-apps.md) (465 ⭐) — A collaborative list of open source Xamarin & MAUI apps.
- [berty/berty](https://awesome-repositories.com/repository/berty-berty.md) (9,204 ⭐) — Berty is a peer-to-peer messaging application and framework designed for decentralized private messaging. It utilizes a distributed identity protocol and a decentralized database to enable end-to-end encrypted communication without relying on central servers, phone numbers, or email addresses.

The project distinguishes itself through an offline messaging framework that uses Bluetooth Low Energy and multicast DNS for local device discovery. This allows peers to establish direct connections and exchange messages without internet or cellular data, using QR codes for secure contact exchange.

The
- [zalando/zalando-howto-open-source](https://awesome-repositories.com/repository/zalando-zalando-howto-open-source.md) (805 ⭐) — Open Source guidance from Zalando, Europe's largest online fashion platform
- [dragonflydb/dragonfly](https://awesome-repositories.com/repository/dragonflydb-dragonfly.md) (30,688 ⭐) — Dragonfly is a high-performance, multi-model in-memory data store designed to serve as a drop-in replacement for existing database infrastructures. By utilizing a multi-threaded, shared-nothing architecture and a fiber-based concurrency model, it maximizes CPU utilization and minimizes latency for read and write operations. The system supports a wide range of data structures, including strings, hashes, lists, sets, sorted sets, and JSON documents, while maintaining full compatibility with standard industry wire protocols and client libraries.

What distinguishes Dragonfly is its focus on effic
- [cfpb/open-source-project-template](https://awesome-repositories.com/repository/cfpb-open-source-project-template.md) (214 ⭐) — A project template containing default open source files for new projects
- [cyb3rward0g/helk](https://awesome-repositories.com/repository/cyb3rward0g-helk.md) (3,926 ⭐) — HELK is a containerized security information and event management environment and threat hunting platform. It provides a security-focused deployment of the ELK stack, combining Elasticsearch, Logstash, and Kibana into a specialized platform for investigating logs and discovering hidden patterns in network and system security data.

The project functions as a security data science suite, integrating interactive computational notebooks and distributed processing tools to run machine learning and graph analytics on security logs. This allows for the identification of hidden attack patterns and an
- [makeplane/plane](https://awesome-repositories.com/repository/makeplane-plane.md) (50,924 ⭐) — Plane is a project management platform designed for planning, tracking, and delivering complex organizational tasks. It provides a centralized workspace that utilizes hierarchical structures to organize work into epics and initiatives, enabling automated progress tracking across teams without requiring manual status updates.

The platform distinguishes itself through an integrated artificial intelligence engine that coordinates tasks, retrieves live data, and automates repetitive workflows by analyzing project history and documentation. It supports enterprise-grade requirements by offering sel
- [mahmoud/awesome-python-applications](https://awesome-repositories.com/repository/mahmoud-awesome-python-applications.md) (17,892 ⭐) — This project is a curated directory and reference library of open-source Python applications. It serves as a comprehensive index designed to help developers study real-world software architecture, design patterns, and practical implementation strategies through a diverse collection of community-driven projects.

The repository distinguishes itself by focusing on the analysis of production-ready software patterns rather than providing a single tool. It offers a structured way to explore how complex features, such as modular plugin systems, configuration management, and various deployment strate
- [show-me-the-code/python](https://awesome-repositories.com/repository/show-me-the-code-python.md) (4,226 ⭐) — This project is a curated library of Python code examples, educational resources, and programming tutorials. It functions as an educational repository designed to teach Python language fundamentals through practical implementation tasks, real-world exercises, and functional code snippets.

The collection covers a diverse range of implementation examples, including the development of interactive websites and message boards using web frameworks. It also features scripts for audio speech processing, automated media processing for images, and the extraction of data from web content.

Additional ca
- [zachflower/awesome-open-source-supporters](https://awesome-repositories.com/repository/zachflower-awesome-open-source-supporters.md) (681 ⭐) — ⭐️ A curated list of companies that offer their services for free to Open Source projects
- [bregman-arie/devops-exercises](https://awesome-repositories.com/repository/bregman-arie-devops-exercises.md) (82,879 ⭐) — This project is a comprehensive educational curriculum designed to build proficiency across modern infrastructure, cloud-native technologies, and systems administration. It functions as a reference library and interview preparation resource, offering a structured collection of conceptual questions, practical coding challenges, and hands-on scenarios that cover the full spectrum of software delivery and operational workflows.

The repository distinguishes itself through a modular, domain-specific structure that links instructional problem statements with verified implementation examples. By emp
- [open-source-legal/opencontracts](https://awesome-repositories.com/repository/open-source-legal-opencontracts.md) (1,356 ⭐) — The open document intelligence platform for builders and hackers - DMS for the agentic world
- [github/opensource.guide](https://awesome-repositories.com/repository/github-opensource-guide.md) (15,530 ⭐) — This project serves as a comprehensive repository of best practices and documentation standards for managing open source software. It provides a foundational framework for establishing project governance, defining contributor roles, and structuring the lifecycle of collaborative software development. By centralizing knowledge on community building and operational transparency, it acts as a guide for launching, maintaining, and scaling healthy software projects.

The project distinguishes itself by offering actionable strategies for the human and organizational aspects of software development t
- [beekeeper-studio/beekeeper-studio](https://awesome-repositories.com/repository/beekeeper-studio-beekeeper-studio.md) (22,030 ⭐) — Beekeeper Studio is a cross-platform desktop application designed for database management and SQL development. It provides a unified graphical interface to connect to, query, and modify data across a wide range of relational and NoSQL database systems. The application functions as a comprehensive workspace, integrating tools for schema design, record editing, and data visualization.

The project distinguishes itself through a focus on secure, flexible connectivity and AI-assisted workflows. It supports advanced authentication methods, including enterprise single sign-on, multi-factor authentic
- [deviantony/docker-elk](https://awesome-repositories.com/repository/deviantony-docker-elk.md) (18,375 ⭐) — This project is a containerized orchestration layer for the Elastic Stack, providing a pre-configured set of Docker Compose files to deploy Elasticsearch, Logstash, and Kibana as a unified data analysis stack. It functions as a centralized log management system for ingesting, indexing, and searching log data using a cluster of interconnected services.

The deployment pattern includes an Elasticsearch cluster manager that enables scaling data nodes through replica scaling and internal discovery. It provides a web-based administration interface for monitoring cluster health and status.

The syst
- [tailscale/tailscale](https://awesome-repositories.com/repository/tailscale-tailscale.md) (32,596 ⭐) — Tailscale is a zero-trust networking overlay that connects distributed devices and services into a private, encrypted mesh network. By utilizing a high-performance, user-space implementation of the WireGuard protocol, it establishes secure peer-to-peer tunnels across diverse network topologies without requiring complex firewall configuration. The platform operates on a centralized control plane that manages global network state, authentication, and policy distribution, ensuring that connectivity is governed by identity rather than traditional IP-based rules.

What distinguishes Tailscale is it
- [ory/kratos](https://awesome-repositories.com/repository/ory-kratos.md) (13,455 ⭐) — Kratos is a centralized identity and access management server designed to handle user registration, authentication, and profile management. It functions as an identity flow orchestrator, managing the state and security of authentication processes across web, mobile, and command-line interfaces. The system provides a standards-compliant authorization server that issues tokens and manages delegated access for third-party applications and internal services, supporting multi-factor authentication and custom identity schemas to secure user accounts.

The project distinguishes itself through a headl
- [danthareja/contribute-to-open-source](https://awesome-repositories.com/repository/danthareja-contribute-to-open-source.md) (1,495 ⭐) — The goal of this project is to empower you to contribute code to open source projects on GitHub by teaching you the mechanics of the process in an interactive experience.
- [open-source-parsers/jsoncpp](https://awesome-repositories.com/repository/open-source-parsers-jsoncpp.md) (8,850 ⭐) — JsonCpp is a C++ library for parsing, manipulating, and generating JSON data. It functions as a data interchange tool that provides a JSON parser to convert formatted text into structured data and a JSON serializer to transform internal data structures back into valid JSON strings.

The library features the ability to preserve non-standard JSON comments during the deserialization and serialization process, which supports the management of human-readable configuration files.

The project implements a tree-based internal representation for programmatic data access and uses a builder-based config
- [signoz/signoz](https://awesome-repositories.com/repository/signoz-signoz.md) (27,355 ⭐) — SigNoz is a full-stack observability platform designed to collect, store, and visualize metrics, logs, and distributed traces in a unified environment. It leverages OpenTelemetry-based data collection to ingest telemetry from diverse sources using vendor-neutral protocols, ensuring interoperability across complex microservices architectures. The platform utilizes a high-performance columnar storage engine to enable rapid aggregation and filtering, providing a centralized backend for monitoring application health and performance.

What distinguishes the platform is its focus on automated instru
- [amruthpillai/reactive-resume](https://awesome-repositories.com/repository/amruthpillai-reactive-resume.md) (38,613 ⭐) — This project is a web-based platform designed for creating, managing, and sharing professional resumes. It functions as a structured document builder that integrates artificial intelligence to assist with content generation, editing, and analysis. Users can maintain a collection of resumes, customize their visual presentation through various templates, and export them into multiple formats for job applications.

The platform distinguishes itself through its autonomous AI agent capabilities, which can perform research, suggest incremental edits, and apply data patches directly to documents. It
- [numfocus/getting-started-with-open-source](https://awesome-repositories.com/repository/numfocus-getting-started-with-open-source.md) (0 ⭐) — This repository contains documents and resources on getting started with Open Source projects.
- [elastic/logstash](https://awesome-repositories.com/repository/elastic-logstash.md) (14,884 ⭐) — Logstash is a JVM-based event processor and extract, transform, load system designed for log data processing pipelines. It functions as a plugin-based data ingestor that collects, transforms, and delivers logs and event data from multiple sources to various destinations.

The system utilizes a modular architecture of interchangeable input, filter, and output components to handle real-time data ingestion and enterprise log aggregation. Users can extend the pipeline's functionality by developing custom plugins to support unique data sources or specific transformation logic.

The platform covers
