OpenSearch

SIEM & Observability

Official Website →

OpenSearch is a community-driven, open-source search and analytics suite derived from Elasticsearch and Kibana, maintained by AWS and a growing community of contributors.

Core Components

OpenSearch - Distributed search and analytics engine
OpenSearch Dashboards - Visualization and user interface
Data Prepper - Server-side data collector for trace and log data

Key Features

Full-Text Search - Powerful search capabilities with relevance scoring
Log Analytics - Centralized logging and analysis at scale
Trace Analytics - Distributed tracing for microservices
Security Analytics - SIEM capabilities with detection rules
Anomaly Detection - Machine learning-based anomaly detection

Use Cases

Cost-effective alternative to commercial SIEM solutions
Log aggregation and observability
Security monitoring and compliance
Application search functionality
Business intelligence and analytics

← All Tools View Resume