issues
search
matanolabs
/
matano
Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
https://matano.dev
Apache License 2.0
1.42k
stars
98
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Allow a detection to define how many alerts occurred
#138
chrismsnz
opened
1 year ago
0
fix: Don't inline Iceberg schema as CFN property
#137
Samrose-Ahmed
closed
1 year ago
0
Added matano_alert VRL to convert all ECS field timestamps
#136
chrismsnz
closed
1 year ago
0
🐛 Fix for allowing custom log source with all custom table configurations
#135
shaeqahmed
closed
1 year ago
0
Bug when defining a custom log source with all custom table configurations
#134
shaeqahmed
opened
1 year ago
0
osquery - Managed Log Source
#133
shaeqahmed
opened
1 year ago
3
feat: Enable CloudWatch metrics for Athena workgroups
#132
timoguin
closed
1 year ago
0
Enable CloudWatch metrics for Athena workgroups
#131
timoguin
closed
1 year ago
0
Add GCP Audit Logs managed log source
#130
Samrose-Ahmed
closed
1 year ago
0
Managed log source for GCP Cloud Audit Logs
#129
Samrose-Ahmed
closed
1 year ago
0
Managed log source for Cilium Tetragon Container Security events
#128
Samrose-Ahmed
opened
1 year ago
0
Add views for enrichment tables.
#127
Samrose-Ahmed
closed
1 year ago
0
Can Matano directly pull Crowdstrike Falcon api data?
#126
brentley
opened
1 year ago
1
Add a config option to not explicitly set S3 Block Public Access
#125
Samrose-Ahmed
closed
1 year ago
0
s3:PutPublicAccessBlock Access Denied
#124
ngocsanguit
opened
1 year ago
4
Add flattened views for enrichment tables
#123
timoguin
closed
1 year ago
0
Support CDK permissions boundary to limit CFN deployment permissions
#122
Samrose-Ahmed
opened
1 year ago
0
feat: transformer: sideline partially erroring lines
#121
Samrose-Ahmed
closed
1 year ago
2
Managed log sources for CloudWatch Metric Streams
#120
timoguin
opened
1 year ago
0
Add HTTP based log ingestion support
#119
rams3sh
opened
1 year ago
0
AWS Cost and Usage Reports
#118
timoguin
opened
1 year ago
0
🔔 Implement Alert change streams + add SNS destination for webhooks
#117
shaeqahmed
closed
1 year ago
0
🔔 Add webhook support to Matano Alerts via SNS
#116
shaeqahmed
opened
1 year ago
0
Managed log source for Sysdig Secure events
#115
timoguin
opened
1 year ago
0
Option to preserve original event or not in a log source
#114
shaeqahmed
opened
1 year ago
0
Add Google Workspace Alerts log source
#113
Samrose-Ahmed
closed
1 year ago
0
Managed log source for Google Workspace Alerts
#112
Samrose-Ahmed
closed
1 year ago
0
🔥 Realtime Data Enrichment - add get_enrichment_table_record fn to VRL log transform pipeline
#111
shaeqahmed
closed
1 year ago
0
S3 access log source fails transformation due to dependency on "name" config field
#110
timoguin
opened
1 year ago
0
docs: add timoguin as a contributor for code
#109
allcontributors[bot]
closed
1 year ago
0
fix: Bad URL formatting and requests for Snyk API calls
#108
timoguin
closed
1 year ago
3
Snyk API calls using bad URL formatting and GET instead of POST
#107
timoguin
closed
1 year ago
0
Google Cloud Storage (GCS) ingestion source
#106
Samrose-Ahmed
opened
1 year ago
1
☁️ Add Cloudflare Logs Integration
#105
shaeqahmed
closed
1 year ago
0
new nested aws config in matano.config.yml but support existing
#104
Samrose-Ahmed
closed
1 year ago
0
matano init error: A PolicyStatement used in an identity-based policy must specify at least one resource.
#103
nickchap
closed
1 year ago
1
infra: Add lifecyle expiration rules to relevant buckets
#102
Samrose-Ahmed
closed
1 year ago
0
Add Google Workspace Admin logs managed log source
#101
Samrose-Ahmed
closed
1 year ago
0
Managed log source for Google Workspace Admin events
#100
Samrose-Ahmed
closed
1 year ago
0
Enrichment in data transformation (w/ VRL)
#99
shaeqahmed
closed
1 year ago
0
log_puller: Don't create secrets for sources that don't need them.
#98
Samrose-Ahmed
closed
1 year ago
1
Out-of-the-Box Detection Rules in Matano
#97
shaeqahmed
opened
1 year ago
4
docs: add grue as a contributor for code, and doc
#96
allcontributors[bot]
closed
1 year ago
0
🔧 support `key_pattern` in addition to key_prefix for ingest.s3_source configuration
#95
shaeqahmed
closed
1 year ago
1
Add managed log source for AWS WAF logs
#94
grue
closed
1 year ago
3
Add managed log source for Azure AD audit logs (MS Graph)
#93
Samrose-Ahmed
closed
1 year ago
1
Managed log source for Azure AD Audit logs
#92
Samrose-Ahmed
closed
1 year ago
0
Support lookup metadata from file/payload to enrich events for sources such as AWS ELB
#91
shaeqahmed
opened
1 year ago
1
Support `key_pattern` in addition to `key_prefix` as an alterantive for advanced use cases when BYO bucket
#90
shaeqahmed
closed
1 year ago
0
Managed log source for Cloudflare
#89
shaeqahmed
closed
1 year ago
0
Previous
Next