https://github.com/tenzir/vast

Tenzir is the data pipeline engine for security teams.
https://github.com/tenzir/vast

dataops hacktoberfest incident-response investigation netflow pcap pipelines secdataops security siem sigma soc suricata threathunting zeek

Last synced: 12 months ago
JSON representation

Tenzir is the data pipeline engine for security teams.

• Host: GitHub
• URL: https://github.com/tenzir/vast
• Owner: tenzir
• License: bsd-3-clause
• Created: 2010-09-23T01:19:19.000Z (over 15 years ago)
• Default Branch: main
• Last Pushed: 2024-10-29T09:21:08.000Z (over 1 year ago)
• Last Synced: 2024-10-29T09:22:37.476Z (over 1 year ago)
• Topics: dataops, hacktoberfest, incident-response, investigation, netflow, pcap, pipelines, secdataops, security, siem, sigma, soc, suricata, threathunting, zeek
• Language: C++
• Homepage: https://docs.tenzir.com
• Size: 1.22 GB
• Stars: 642
• Watchers: 35
• Forks: 91
• Open Issues: 18
• Metadata Files:
  • Readme: README.md
  • Changelog: changelog/2020.01.31/bug-fixes/647.md
  • License: LICENSE

Awesome Lists containing this project

• awesome-security - VAST - Open source security data pipeline engine for structured event data, supporting high-volume telemetry ingestion, compaction, and retrieval; purpose-built for security content execution, guided threat hunting, and large-scale investigation. (Network / Monitoring / Logging)
• awesome-cybersecurity-blueteam - VAST - Free and open-source network telemetry engine for data-driven security investigations. (Security monitoring / Network Security Monitoring (NSM))
• awesome-cybersecurity-blueteam-cn - VAST - 一个用于数据驱动的安全调查的免费开源网络遥测引擎 (安全监控 / 网络安全监控（NSM）)
• venom - `VAST` - Open source security data pipeline engine for structured event data, supporting high-volume telemetry ingestion, compaction, and retrieval; purpose-built for security content execution, guided threat hunting, and large-scale investigation. (Network / Monitoring / Logging / Event Management)

README

          














Data Pipelines for Security Teams



## What is Tenzir?

Tenzir is the data pipeline engine for security teams.

If you need to collect, parse, shape, normalize, aggregate, store, query, and

route security telemetry data at scale, you'll love how our pipelines manage

your dataflows. Tenzir makes it easy to quickly onboard and store data from

numerous sources, reduce data volumes to optimize cloud and data costs, and

execute detections and run analytics in-stream.

## Get Started

Check out [our documentation](https://docs.tenzir.com/) where your find

tutorials that walk your through the first steps, how-to guides to solve a

specific problem, explanations of key concepts, and an in-depth reference of the

nitty-gritty technical details.

## Community

Got questions? We're here to help. Join our friendly community Discord server

where you'll find a thriving group of enthusiasts that love the intersection of

data infrastructure and security operations.