Skip to content

Releases: openarmor/osd-plugins

OpenArmor OSD Plugins

09 Sep 15:51
@mranv mranv
v1.0.0
541dbd2
This commit was signed with the committer’s verified signature.
mranv Anubhav Gain
SSH Key Fingerprint: 3HpeiwptWc7J2sPLBC/Cuny7QTdbpfibSvjHvnAraPM Learn about vigilant mode.
Compare
Choose a tag to compare
OpenArmor OSD Plugins Latest
Latest

Release Date

September 15, 2024

Overview

We are thrilled to announce the first stable release of OpenArmor OSD Plugins, version 1.0.0. This release marks a significant milestone in extending the capabilities of OpenSearch Dashboards (OSD) with a suite of powerful security-focused plugins. Our goal is to enhance the security analytics and visualization capabilities of OpenSearch Dashboards, making it an even more robust platform for security operations and threat hunting.

New Features

1. Threat Intelligence Integration Plugin

  • Seamless integration with popular threat intelligence feeds
  • Real-time correlation of log data with known IoCs
  • Customizable alerting based on threat intelligence matches

2. Advanced SIEM Dashboard

  • Comprehensive overview of security events across your infrastructure
  • Interactive timeline for event correlation and investigation
  • Customizable widgets for key security metrics and KPIs

3. User Behavior Analytics (UBA) Plugin

  • Machine learning-powered anomaly detection for user activities
  • Risk scoring for user accounts based on behavior patterns
  • Visual representation of user activity timelines and anomalies

4. Network Traffic Visualization

  • Real-time visualization of network flows and connections
  • Geolocation mapping for external IP addresses
  • Drill-down capabilities for detailed packet analysis

Improvements

  • Performance Optimization: Significantly improved query performance for large-scale log analysis
  • Scalability: Designed to handle high volumes of security event data efficiently
  • User Interface: Revamped UI for better user experience and intuitive navigation
  • Documentation: Comprehensive guides for installation, configuration, and usage of each plugin

Technical Details

  • Compatibility: Fully compatible with OpenSearch Dashboards 2.11.0
  • Installation: Easy installation through the OSD plugin manager
  • Configuration: Centralized configuration management via .yml files
  • API: RESTful API for programmatic access to plugin functionalities

Known Issues

  • Occasional lag in real-time visualizations when processing extremely high volumes of data (>100,000 events per second)
  • Limited support for older browsers (IE11 and below not supported)

Upcoming Features

  • Integration with additional threat intelligence platforms
  • Enhanced machine learning capabilities for predictive threat detection
  • Support for custom plugin development and integration

Feedback and Support

We welcome your feedback and contributions! Please report any issues or suggestions on our GitHub Issues page.

For commercial support options, please contact support@theopenarmor.org.

License

This project is licensed under the Apache License 2.0. See the LICENSE file for details.

Thank you for choosing OpenArmor OSD Plugins. We're excited to see how you'll use these tools to enhance your security operations!

Assets 5
Loading