Python bindings for the Prelude Library

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for totol from gravatar.com totol

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: GNU General Public License v2 (GPLv2) (GPL V2.1)
  • Author: CS GROUP France
Classifiers

Project description

Prelude is a Universal “Security Information & Event Management” (SIEM) system. Prelude collects, normalizes, sorts, aggregates, correlates and reports all security-related events independently of the product brand or license giving rise to such events; Prelude is “agentless”.

As well as being capable of recovering any type of log (system logs, syslog, flat files, etc.), Prelude benefits from a native support with a number of systems dedicated to enriching information even further (snort, samhain, ossec, auditd, etc.).

Prelude standardizes all the notables or suspicious events to IDMEF standard format (RFC 4765). With this format, events are enriched to facilitate automation and correlation processes but also to provide as much information to the operator (contextualization alerts) to allow it to respond quickly and effectively.

Libprelude is a collection of generic functions providing communication between all Sensors, like IDS (Intrusion Detection System), and the Prelude Manager. It provides a convenient interface for sending and receiving IDMEF (Information and Event Message Exchange Format) alerts to Prelude Manager with transparent SSL, fail-over and replication support, asynchronous events and timer interfaces, an abstracted configuration API (hooking at the command-line, the configuration line, or wide configuration, available from the Manager), and a generic plugin API. It allows you to easily turn your favorite security program into a Prelude sensor.

Installing

Install requirements to build the C part:

yum group install "Development Tools"

yum install python-devel

Install and update using pip:

pip install -U prelude

A Simple Example

import prelude

if __name__ == '__main__':
    idmef = prelude.IDMEF()
    idmef.set("alert.classification.text", "Hello world!")
    print(idmef)

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for totol from gravatar.com totol

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: GNU General Public License v2 (GPLv2) (GPL V2.1)
  • Author: CS GROUP France
Classifiers

Release history Release notifications | RSS feed

This version

5.1.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

prelude-5.1.1-1.tar.gz (81.3 kB view hashes)

Uploaded Source

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page