Gravwell was founded to bring the benefits of usable machine data to all customers: large or small, text or binary, security or operational. We enable security analytics that go well beyond log data into industrial processes, vehicle fleets, IT infrastructure, or everything combined. Need to hunt down a suspected access breach? Gravwell can correlate build access logs and run facial recognition machine learning against camera data to isolate multiple subjects entering a facility with a single badge-in. We'll help you find the needle in your haystack.
We exist to provide analytics capabilities to people who need more than just text log searching and need it sooner rather than later at a price they can afford. Gravwell is a full-stack analytics platform built to handle huge amounts of unstructured data with a pricing model that encourages, rather than punishes, keeping all of that valuable data for later analysis. Data is gold; don't throw it away to cut costs.
No features have been listed yet.
Based on our record, Wazuh seems to be a lot more popular than Gravwell. While we know about 49 links to Wazuh, we've tracked only 1 mention of Gravwell. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
Gravwell | Go Backend Engineer; Resident Engineer & Systems Support Specialist | Remote (US) | Full-Time | https://gravwell.io Gravwell is a data analytics company with a focus on high-speed analysis of diverse data sources including binary (e.g. PCAP). Our people have extensive backgrounds in penetration testing, reverse engineering, analytics, incident response, and large scale virtualization. Our platform is... - Source: Hacker News / over 2 years ago
I use Wazuh instead. Greenbone CE is severely limited and requires payment for anything beyond the very basic. Super simple installation more features. Source: 5 months ago
Monitoring & Active Measures - Exporting firewall events to an external time-series database like I describe above is good to see who is touching your firewall or accessing your web site. Using an Intrusion Detection System / Intrusion Prevention System (IDS/IPS) such as open-source Suricata, which is a free package on pfSense, and deploying file system integrity monitoring, such as the open-source Wazuh on the... Source: 6 months ago
Wazuh: An open source security monitoring platform that integrates with popular tools like Elasticsearch and Kibana to provide comprehensive security event analysis and response capabilities. - Source: dev.to / 12 months ago
On another note, as mentioned in my response to the question of this post, we are working on a complete rework of the Vulnerability Detection engine. This rework will provide a sanitized CVEs feed from wazuh.com and a completely new scanner engine. It will also include a new UI for global queries. Source: 12 months ago
Nessus essentials (https://www.tenable.com/products/nessus/nessus-essentials) might do the trick. It can help to check what kind of services you are running are vulnerable to exploits. Also, the general recommendation here would be not to use default ports for all the services you are exposing. Also, you can check something like Wazuh - https://wazuh.com/. Source: 12 months ago
logstash - logstash is a tool for managing events and logs.
Zabbix - Track, record, alert and visualize performance and availability of IT resources
Fluentd - Fluentd is a cross platform open source data collection solution originally developed at Treasure Data.
Fortinet FortiAnalyzer - Fortinet FortiAnalyzer is a powerful product for Security Fabric Analytics and Automation.
Check Point - Check Point Infinity architecture delivers consolidated Gen V cyber security across networks, cloud, and mobile environments.
Beats - Beats is the platform for single-purpose data shippers that is installed as lightweight agents and send data to machines to Logstash or Elasticsearch.