Welcome to the Prelude Universal Open-Source SIEM project¶
Prelude is a Universal "Security Information & Event Management" (SIEM) system. Prelude collects, normalizes, sorts, aggregates, correlates and reports all security-related events independently of the product brand or license giving rise to such events; Prelude is "agentless".
As well as being capable of recovering any type of log (system logs, syslog, flat files, etc.), Prelude benefits from a native support with a number of systems dedicated to enriching information even further (snort, samhain, ossec, auditd, etc.).
Security events are normalized thanks to a single format, called the "Intrusion Detection Message Exchange Format" (IDMEF - RFC4765), which is an international standard created upon the initiative of IETF along with the participation of Prelude teams to enable interacting with the various security tools currently available on the market.
WARNING on Prelude OSS Edition Vs Prelude Pro Edition¶
Prelude OSS is the open source edition of Prelude Pro . Prelude OSS is aimed for evaluation, research and test purpose on very small environments. Please note that Prelude OSS performances are way lower than the Prelude Pro edition.
23 September 2013 : New OSS Version 1.1.0 : http://www.prelude-ids.com/index.php/uk/products/93-flash-info-uk/142-23-09-2013-prelude-oss-1-0-2-is-available
3 October 2012 : New Prelude Entreprise Edition
20 July 2012 : Mailing lists are back on prelude-ids.org
Join the community on https://www.prelude-ids.org/lists
14 July 2012 : Prelude OSS 1.0.1 is back on line
- Many bug fixes
- Few improvements on the GUI
- Some fixes on translations
- New Prelude LML rules
- Copyrights changes
- Relay option transfered to Prelude Pro
Mailing list will shortly follow, stay tuned on "Announce Prelude mailing list" :http://www.prelude-ids.com/index.php/uk/component/content/article?id=118
January 2012 : CS acquires Prelude IDS : FAQ about CS acquiring Prelude-ids
Prelude Documentation Sections¶
- Prelude Download Page (NEW : July 2012 : Source code is back on line with the 1.0.1 version )
- Repository Access
- "Prelude Project http://www.prelude-ids.com/index.php/uk/community/welcome
- PreludeIDS Company Home Page
- Prelude Specifications
The Prelude Team.