Generic SIEM engine detector
Project description
Clickdetect
Clickdetect is a SIEM engine on steroids, no lock-in with any vendors and powerfull detection.
Follow the doc: https://clickdetect.souzo.me
Starting guide
First of all, create your runner.yml file. (Follow doc for the creation) You will put detectors, webhooks and datasources in the configuration file.
uv
Follow uv installation in https://docs.astral.sh/uv
uv sync --no-dev
uv run clickdetect --api
Docker/Podman
Local
podman build -t clickdetect .
podman run -v ./runner.yml:/app/runner.yml -p 8080 clickdetect --api -p 8080
Github Packages
podman run -v ./runner.yml:/app/runner.yml -p 8080 ghcr.io/clicksiem/clickdetect:latest --api -p 8080
Next steps
- Add minimal 10 webhooks []
- Implement timeframe []
- Group Alerts
- Silence alerts
- Add silence alerts endpoint for api []
- Add sigma convertion in rules []
- like: sigma: true
- Hot reload for rules []
- add option like --reload
- Add api endpoint to add/remove/update new rules []
- file hot reload will make this possible
Contact-me
- E-mail: me@souzo.me
- Matrix: @souzo:matrix.org
- Linkedin: https://www.linkedin.com/in/vinicius-f-a76ba51b5/
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file clickdetect-1.0.1.tar.gz.
File metadata
- Download URL: clickdetect-1.0.1.tar.gz
- Upload date:
- Size: 15.1 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: uv/0.11.0 {"installer":{"name":"uv","version":"0.11.0","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
b8234d060dd146e16417f6d7a511ba9d95945b1c23ef69c2d12871c59b1a5591
|
|
| MD5 |
ba74a4501be1fe280ee71a899c6abd8d
|
|
| BLAKE2b-256 |
6276e38c94b69b2cf4268a00ba44de984eb6ae035596f02cf215c410a971c88a
|
File details
Details for the file clickdetect-1.0.1-py3-none-any.whl.
File metadata
- Download URL: clickdetect-1.0.1-py3-none-any.whl
- Upload date:
- Size: 26.3 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: uv/0.11.0 {"installer":{"name":"uv","version":"0.11.0","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
576476dc1da10607c83c62c29d58d4ca19afae6de0b4e41eb24b8f10e99f7187
|
|
| MD5 |
58f339c10a3ecd2981a9af47799bd4d9
|
|
| BLAKE2b-256 |
34efc80989062ef021d3088f2e70bb849b91acaff7cc36c7e698061a67ce36fa
|
