Big Data Security Analytics Framework

This project is maintained by The OpenSOC Project


The OpenSOC project is a collaborative open source development project dedicated to providing an extensible and scalable advanced security analytics tool. It has strong foundations in the Apache Hadoop Framework and values collaboration for high-quality community-based open source development.

The OpenSOC project has the following goals:

The OpenSOC project welcomes participation from all people and organizations for development, enhancements, and/or implementation support.

What is OpenSOC?

OpenSOC is a Big Data security analytics framework designed to consume and monitor network traffic and machine exhaust data of a data center. OpenSOC is extensible and is designed to work at a massive scale.

The framework provides the following capabilities:

OpenSOC is designed to scale up to consume millions of messages per second, enrich them, run them through anomaly detection algorithms, and issue real-time alerts.

What do I need to run OpenSOC


OpenSOC consists of the following repositories


Instructions for obtaining OpenSOC can be found at the project's Primary Wiki.