Expand description
§Rust Threat Detector
A memory-safe SIEM threat detection component for real-time security monitoring and threat analysis.
§Features
- Memory Safety: Built with Rust to prevent vulnerabilities in security tools
- Real-time Analysis: Fast pattern matching and threat detection
- MITRE ATT&CK Framework: 10+ technique detection patterns
- Pattern Library: Pre-configured threat patterns
- Anomaly Detection: Statistical anomaly detection
- Alert Generation: Structured alert output for SIEM integration
§Alignment with Federal Guidance
Implements memory-safe security monitoring tools, aligning with 2024 CISA/FBI guidance for critical infrastructure protection.
Re-exports§
pub use mitre_attack::AttackTactic;pub use mitre_attack::AttackTechnique;pub use mitre_attack::MitreAttackDetector;pub use mitre_attack::ThreatDetection;
Modules§
- mitre_
attack - MITRE ATT&CK framework pattern detection
Structs§
- LogEntry
- Log entry for analysis
- Threat
Alert - Detected threat
- Threat
Detector - Threat detector
- Threat
Pattern - Threat detection pattern
Enums§
- Detection
Error - Threat detection errors
- Threat
Category - Threat categories
- Threat
Severity - Threat severity levels