Skip to content

tenzir/tenzir

main
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
172 branches 121 tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
.github
Bump google-github-actions/setup-gcloud from 1 to 2
December 12, 2023 08:59
ansible
Use systemd provided default paths if available
December 6, 2023 14:09
changelog
Add TCP saver (#3727)
December 14, 2023 05:25
cloud/aws
Move test data files to their new place
October 4, 2023 16:07
cmake
Remove problematic debian metadata fields
December 6, 2023 11:47
contrib
Bump plugins to remove uses of aspect_plugin::location()
December 12, 2023 11:54
demo-node
Fix typos
December 11, 2023 21:08
docker
Reinstate the 'dev' Dockerfile
November 27, 2023 14:31
examples
Bump tornado from 6.3.2 to 6.3.3 in /examples/notebooks
August 30, 2023 11:44
libtenzir
Update in-source docs URLs
December 14, 2023 11:22
libtenzir_test
Fix min-max synopsis lookups for inequality comparisons
November 15, 2023 16:57
nix
Build the python wheel with the static binary (#3726)
December 14, 2023 13:25
plugins
Show processes and sockets (#3521)
December 12, 2023 13:32
python
Bump pytest-asyncio from 0.21.1 to 0.23.2 in /python
December 12, 2023 09:14
rfc
Integrate review suggestions
July 14, 2023 11:32
schema
Add blob type for arbitrary binary data
October 19, 2023 15:06
scripts
Show processes and sockets (#3521)
December 12, 2023 13:32
tenzir
Add TCP saver (#3727)
December 14, 2023 05:25
web
Replace icons again
December 14, 2023 16:00
.clang-format
s|vast|tenzir|g
July 13, 2023 17:13
.clang-tidy
Do not warn on using ranges
October 6, 2023 09:32
.clangd
s|VAST|Tenzir|g
July 13, 2023 16:25
.cmake-format
Fix formatting
October 11, 2023 06:08
.dockerignore
Add pfs submodule to Dockerfile
December 9, 2023 20:43
.editorconfig
Add editorconfig file
October 17, 2019 21:39
.gitignore
Add a library of support functions for functional tests
October 4, 2023 16:07
.gitmodules
Finish up linux implementation
November 23, 2023 13:34
.markdownlintrc
Replace .markdownlint.yaml with .markdownlintrc
June 10, 2023 10:09
.yamllint.yaml
Add a yamllint style check to CI
August 26, 2021 14:33
CMakeLists.txt
Rename pytenzir -> tenzir
November 29, 2023 15:01
CMakePresets.json
Add support for .pkg macOS packages
November 26, 2023 07:49
Dockerfile
Replace occurences of show version with version
December 9, 2023 20:35
LICENSE
Update copyright notice in LICENSE file
September 3, 2020 16:17
README.md
Adapt slogan
September 10, 2023 09:20
VERSIONING.md
s|vast|tenzir|g
July 13, 2023 17:13
docker-compose.yaml
Update Docker Compose file to use configurable image tag
October 24, 2023 15:57
env.example
Document the new env variable
October 24, 2023 18:52
flake.lock
Bump nixpkgs
November 26, 2023 22:39
flake.nix
Bump nixpkgs
November 26, 2023 22:39
shell.nix
Merge branch 'main' of https://github.com/tenzir/tenzir into topic/co…
November 30, 2023 09:25
tenzir.spdx.json
Update SBOM
September 18, 2023 10:07
tenzir.yaml.example
Use systemd provided default paths if available
December 6, 2023 14:09
vendored.spdx
Add protobuf 3.21 compatibility
October 11, 2023 06:08
version.json
Prepare repository for Tenzir v4.6.4
December 7, 2023 16:33
Open Source Data Pipelines for Security Teams Get Started | User Guides Start Here What is Tenzir? What can I do with Tenzir? License

README.md

Tenzir Tenzir

Open Source Data Pipelines for Security Teams

Get Started | User Guides

Chat

Start Here

Dive right in and install Tenzir:

curl https://get.tenzir.app | sh

Check out our documentation for detailed setup instruction, user guides, and reference material.

What is Tenzir?

Tenzir is a distributed platform for processing and storing security event data in a pipeline dataflow model, providing the following abstractions:

  • Tenzir's pipelines consist of powerful operators that perform computations over Arrow data frames. The Tenzir Query Language (TQL) makes it easy to express pipelines—akin to Splunk and Kusto.
  • Tenzir's indexed storage engine persists dataflows in an open format (Parquet & Feather) so that you can access them with any query engine, or run pipelines over selective historical workloads.
  • Tenzir nodes offer a managed runtime for pipelines and storage.
  • Interconnected nodes form a data fabric and pipelines can span across them to implement sophisticated security architectures.

What can I do with Tenzir?

Use Tenzir if you want to:

  • Filter, shape, and enrich events before they hit your SIEM or data lake
  • Normalize, enrich, aggregate, and deduplicate structured event data
  • Store, compact, and search event data in an open storage format
  • Operationalize threat intelligence for live and retrospective detection
  • Build your own security data lake
  • Create a federated detection and response architectures

Building Blocks Building Blocks

License

The open-source editions of Tenzir comes with a 3-clause BSD license.

Please see https://tenzir.com/pricing for commercial editions.

About

Open source data pipelines for security teams.

docs.tenzir.com

Topics

security netflow pcap network-forensics incident-response actor-model bitmap-index pipelines dataops suricata siem sigma soc zeek investigation threathunting secdataops

Resources

Readme

License

BSD-3-Clause license

Code of conduct

Code of conduct

Security policy

Security policy
Activity

Stars

559 stars

Watchers

34 watching

Forks

79 forks
Report repository

Releases 120

Tenzir v4.6.4 Latest
Dec 7, 2023
+ 119 releases

Sponsor this project

 
Learn more about GitHub Sponsors

Packages 9

 
 
 
+ 6 packages

Contributors 38

+ 24 contributors

Languages