Skip to content

psyklopp/Dezible-com

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

ย 

History

84 Commits
archetypes
archetypes
ย 
ย 
assets
assets
ย 
ย 
content
content
ย 
ย 
docs
docs
ย 
ย 
images
images
ย 
ย 
layouts
layouts
ย 
ย 
themes
themes
ย 
ย 
.gitignore
.gitignore
ย 
ย 
.gitmodules
.gitmodules
ย 
ย 
.hugo_build.lock
.hugo_build.lock
ย 
ย 
CNAME
CNAME
ย 
ย 
LICENSE.md
LICENSE.md
ย 
ย 
README.md
README.md
ย 
ย 
hugo.toml
hugo.toml
ย 
ย 

Repository files navigation

Dezible - A graph-native AI assistant for incident response

๐Ÿค– A functional SIEM system teaches you how modern security platforms work. Not a toy, not enterprise-grade but something in between that actually works and teaches real concepts. It is a crucial tool in incident response, so why not make it?

๐Ÿ”– Core Philosophy

  • Start with working simple systems (Gall's Law)
  • Build components that can be extended
  • Learn by doing, not by reading vendor docs
  • ML and automation as first-class citizens, not afterthoughts

๐Ÿ€ The Five Pillars

Every SIEM (though it can vary) does five fundamental things:

  1. Data Collection & Normalization - Gather security data from everywhere
  2. Storage & Indexing - Store billions of events, search in milliseconds
  3. Detection & Analysis - Find threats in the noise
  4. Response & Orchestration - Act on threats automatically
  5. Intelligence & Visualization - Present the story to analysts

Each pillar gets its own chapter in Dezible. Each chapter builds a working component.

About

๐ŸŒ€ Making a SIEM from scratch!

dezible.com/

Topics

cybersecurity intrusion-detection-system security-operations-center

Resources

Readme

License

View license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Languages