https://github.com/korenyoni/secbeat

Heartbeat shipped as a Go binary for publishing security-related events to ElasticSearch
https://github.com/korenyoni/secbeat

Last synced: about 2 months ago
JSON representation

Heartbeat shipped as a Go binary for publishing security-related events to ElasticSearch

• Host: GitHub
• URL: https://github.com/korenyoni/secbeat
• Owner: korenyoni
• Created: 2018-01-29T02:42:19.000Z (over 7 years ago)
• Default Branch: master
• Last Pushed: 2018-01-30T00:32:04.000Z (over 7 years ago)
• Last Synced: 2025-02-07T13:14:20.205Z (3 months ago)
• Language: Go
• Homepage:
• Size: 2.93 KB
• Stars: 3
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

        
# Secbeat

A heartbeat shipped as a Golang binary, publishing security-related events to ElasticSearch.

## Motivation

Beats such as [filebeat](https://www.elastic.co/products/beats/filebeat) and [auditbeat](https://www.elastic.co/products/beats/auditbeat) exist, but their scope limits the flexibility

for field creation. Perhaps it is possible to do so with the addition of logstash,

but that is one more component to worry about.

Furthermore, there's no guarantee that filebeat and/or auditbeat can capture

all the events necessary for making HIPAA and/or SOC-2 security logs.

Secbeat is a heartbeat designed to be shipped as a single binary and make use of environment variables

to connect to Elasticsearch and publish security related events.

## State of project

WIP