Skip to content
/ tenzir Public
forked from tenzir/tenzir

Open source data pipelines for security teams.

docs.tenzir.com

License

BSD-3-Clause license
0 stars 89 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

rdettai/tenzir

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18,340 Commits
.github
.github
 
 
ansible
ansible
 
 
changelog
changelog
 
 
cloud/aws
cloud/aws
 
 
cmake
cmake
 
 
contrib
contrib
 
 
demo-node
demo-node
 
 
docker
docker
 
 
examples
examples
 
 
libtenzir
libtenzir
 
 
libtenzir_test
libtenzir_test
 
 
nix
nix
 
 
plugins
plugins
 
 
python
python
 
 
rfc
rfc
 
 
schema
schema
 
 
scripts
scripts
 
 
tenzir
tenzir
 
 
web
web
 
 
.clang-format
.clang-format
 
 
.clang-tidy
.clang-tidy
 
 
.clangd
.clangd
 
 
.cmake-format
.cmake-format
 
 
.dockerignore
.dockerignore
 
 
.editorconfig
.editorconfig
 
 
.gitignore
.gitignore
 
 
.gitmodules
.gitmodules
 
 
.markdownlintrc
.markdownlintrc
 
 
.yamllint.yaml
.yamllint.yaml
 
 
CMakeLists.txt
CMakeLists.txt
 
 
CMakePresets.json
CMakePresets.json
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
VERSIONING.md
VERSIONING.md
 
 
docker-compose.yaml
docker-compose.yaml
 
 
env.example
env.example
 
 
flake.lock
flake.lock
 
 
flake.nix
flake.nix
 
 
shell.nix
shell.nix
 
 
tenzir.spdx.json
tenzir.spdx.json
 
 
tenzir.yaml.example
tenzir.yaml.example
 
 
vendored.spdx
vendored.spdx
 
 
version.json
version.json
 
 

Repository files navigation

Tenzir Tenzir

Open Source Data Pipelines for Security Teams

Get Started | User Guides

Chat

Start Here

Dive right in and install Tenzir:

curl https://get.tenzir.app | sh

Check out our documentation for detailed setup instruction, user guides, and reference material.

What is Tenzir?

Tenzir is a distributed platform for processing and storing security event data in a pipeline dataflow model, providing the following abstractions:

  • Tenzir's pipelines consist of powerful operators that perform computations over Arrow data frames. The Tenzir Query Language (TQL) makes it easy to express pipelines—akin to Splunk and Kusto.
  • Tenzir's indexed storage engine persists dataflows in an open format (Parquet & Feather) so that you can access them with any query engine, or run pipelines over selective historical workloads.
  • Tenzir nodes offer a managed runtime for pipelines and storage.
  • Interconnected nodes form a data fabric and pipelines can span across them to implement sophisticated security architectures.

What can I do with Tenzir?

Use Tenzir if you want to:

  • Filter, shape, and enrich events before they hit your SIEM or data lake
  • Normalize, enrich, aggregate, and deduplicate structured event data
  • Store, compact, and search event data in an open storage format
  • Operationalize threat intelligence for live and retrospective detection
  • Build your own security data lake
  • Create a federated detection and response architectures

Building Blocks Building Blocks

License

The open-source editions of Tenzir comes with a 3-clause BSD license.

Please see https://tenzir.com/pricing for commercial editions.

About

Open source data pipelines for security teams.

docs.tenzir.com

Resources

Readme

License

BSD-3-Clause license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • C++ 89.2%
  • CMake 3.5%
  • Python 3.2%
  • Shell 1.4%
  • HCL 1.2%
  • Nix 0.7%
  • Other 0.8%