Get the updated code & documentation on XS code here
Our main development, and documentation branches are first pushed to our sponsorship repository, and then eventually pushed to our public free repository. To obtain the most updated code, and documentation for OpenUBA, subscribe to our XS Code repository.
https://cp.xscode.com/Tormorrow-SOC/OpenUB
To Build a lightweight, SIEM Agnostic, UEBA Framework focused on providing:
- Model Management
- Community-driven Model Library
- Model Versioning
- Dashboard
- Rule Storage/Management
- Case Management
- Peer-oriented/community intel
- Lightweight, SIEM-agnostic infrastructure
- Flexible/open dataset support
- Model Client (optional)
- Model Server (Remote or Local)
- Transport Client
- User Inferface
The interface is meant to observe system events, and anomalies, but not to replace a SIEM.
- Dashboard (index)
- Anomalies
- Cases
- Data
- Modeling
Go to INSTALL.md
Discord channel: https://discord.gg/RVjVmyv
Telegram: https://t.me/tomorrowsoc