{"id":19149539,"url":"https://github.com/alphasoc/alphasocbeat","last_synced_at":"2026-06-20T17:31:58.620Z","repository":{"id":85395341,"uuid":"360538041","full_name":"alphasoc/alphasocbeat","owner":"alphasoc","description":null,"archived":false,"fork":false,"pushed_at":"2021-06-15T11:36:18.000Z","size":694,"stargazers_count":1,"open_issues_count":1,"forks_count":1,"subscribers_count":5,"default_branch":"master","last_synced_at":"2025-03-23T12:51:24.334Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/alphasoc.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE.txt","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2021-04-22T13:57:03.000Z","updated_at":"2023-01-26T02:42:18.000Z","dependencies_parsed_at":"2023-03-04T05:00:30.014Z","dependency_job_id":null,"html_url":"https://github.com/alphasoc/alphasocbeat","commit_stats":null,"previous_names":[],"tags_count":8,"template":false,"template_full_name":null,"purl":"pkg:github/alphasoc/alphasocbeat","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/alphasoc%2Falphasocbeat","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/alphasoc%2Falphasocbeat/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/alphasoc%2Falphasocbeat/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/alphasoc%2Falphasocbeat/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/alphasoc","download_url":"https://codeload.github.com/alphasoc/alphasocbeat/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/alphasoc%2Falphasocbeat/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":34580039,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-26T15:22:16.424Z","status":"online","status_checked_at":"2026-06-20T02:00:06.407Z","response_time":98,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-11-09T08:08:35.235Z","updated_at":"2026-06-20T17:31:58.612Z","avatar_url":"https://github.com/alphasoc.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"# alphasocbeat\n\nAlphasocbeat is a beat for the elastic stack. Its purpose is to download alerts generated by AlphaSOC Analytics Engine and ship them to elasticsearch.\n\nIt also provides Kibana dashboards helpful in reviewing the alerts.\n\nAlphaSOC Threat Hunter dashboard:\n![AlphaSOC Threat Hunter dashboard](docs/img/AlphaSOC-Threat-Hunter.png)\n\nAlphaSOC Detailed View dashboard:\n![AlphaSOC Detailed View dashboard](docs/img/AlphaSOC-Detailed-View.png)\n\n# Setup / Installation\n\n## Binaries\n\nThe latest alphasocbeat release can be found [here](https://github.com/alphasoc/alphasocbeat/releases).\n\n## Configuration\n\nConfiguration is stored in `alphasocbeat.yml` file. Beat specific configuration requires 3 values:\n```\nalphasocbeat:\n  registry_file: checkpoint.yaml\n  api_url: https://api.alphasoc.net\n  api_key: \u003capi_key\u003e\n```\n`registry_file` is used to store `follow` value, which provides data continuation between beat restarts. It allows downloading alerts newer than last downloaded alert, to avoid data duplication.\n\n`api_key` api key provided by AlphaSOC, allows downloading alerts from API.\n\n## Index setup\n\nTo setup elastic index provided by alphasocbeat, run the following command:\n\n```\n./alphasocbeat setup\n```\n\n## Running alphasocbeat\n\nTo start alphasocbeat, run the following command:\n\n```\n./alphasocbeat run\n```\n\n# Logs\n\nAlphasocbeat logs are stored in `./logs` directory.\n\n# Dashboards \n\nBy default dashboards are installed on running beat. Setting `setup.dashboards.enabled: false` disables that feature.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Falphasoc%2Falphasocbeat","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Falphasoc%2Falphasocbeat","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Falphasoc%2Falphasocbeat/lists"}