Detect and stop breaches!
Furem Cape is a self-hosted, open-source security system that monitors log files to detect anomalous behavior. It's comprised of several Python applications and PostgreSQL databases, which can be deployed via Docker containers, or run on conventional servers. It can integrate into an existing logging pipeline, or operate in stand-alone fashion.
Furem Cape is pronounced like "foo-rem cah-peh" (it's Latin for "catch the thief!"). The project home page is https://www.furemcape.org/.
Prerequisites: either Docker 17.06+, or PostgreSQL 9.5+ and Python 3.6+. Follow the steps in the Install Guide.