Prelude OSS project¶
You can download Prelude OSS VA 5.2 rc2 here
Prelude is a Universal "Security Information & Event Management" (SIEM) system. Prelude collects, normalizes, sorts, aggregates, correlates and reports all security-related events independently of the product brand or license giving rise to such events; Prelude is "agentless".
As well as being capable of recovering any type of log (system logs, syslog, flat files, etc.), Prelude benefits from a native support with a number of systems dedicated to enriching information even further (snort, samhain, ossec, auditd, etc.).Actual Linux distributions support:
- Fedora/RedHat/CentOS with epel 7 and 8: Prelude OSS 5.1
- Debian/Ubuntu: Prelude OSS 5.1
- Gentoo: Prelude OSS 5.1
- Mageia: Prelude OSS 5.1
- Arch Linux: Prelude OSS 5.1
- OpenSuse: Prelude OSS 5.1
- Mac Ports: libprelude 5.1
Security events are normalized thanks to a single format, called the "Intrusion Detection Message Exchange Format" (IDMEF - RFC4765), which is an international standard created upon the initiative of IETF along with the participation of Prelude teams to enable interacting with the various security tools currently available on the market.
WARNING on Prelude OSS Edition Vs Prelude SIEM Edition
Prelude OSS is the open source edition of Prelude SIEM . Prelude OSS is aimed for evaluation, research and test purpose on very small environments. Please note that Prelude OSS performances are way lower than the Prelude SIEM edition.
Visit Prelude Corporate web site for more details.
- Homepage: https://www.prelude-siem.org
Developer: Abdel ELMILI, Antoine LUONG, Camille GARDET, Enguerrand De MAUDUIT, Francois POIROTTE, Gilles LEHMANN, Jean-Charles ROGEZ, Lam HUYNH, Thomas ANDREJAK, Thomas BURGUIERE, Yoann VANDOORSELAERE