Raja Subramaniam
Aug 27, 2019
779k views779k
CommentsAmazon GuardDuty vs Sysdig
Overview
Share your Stack
Help developers discover the tools you use. Get visibility for your team's tech choices and contribute to the community's knowledge.
CLI (Node.js)
Manual
Advice on Sysdig, Amazon GuardDuty
Detailed Comparison
Sysdig is open source, system-level exploration: capture system state and activity from a running Linux instance, then save, filter and analyze. Sysdig is scriptable in Lua and includes a command line interface and a powerful interactive UI, csysdig, that runs in your terminal. Think of sysdig as strace + tcpdump + htop + iftop + lsof + awesome sauce. With state of the art container visibility on top. | It is a managed threat detection service that continuously monitors for malicious or unauthorized behavior to help you protect your AWS accounts and workloads. It monitors for activity such as unusual API calls or potentially unauthorized deployments that indicate a possible account compromise. It also detects potentially compromised instances or reconnaissance by attackers. |
Real-Time Dashboard;
Historical Replay;
Dynamic Topology;
Intelligent Alerting | Accurate, account-level threat detection; Continuous monitoring across AWS accounts without added cost and complexity; Threat detections developed and optimized for the cloud; Threat severity levels for efficient prioritization; Automate threat response and remediation; Highly available threat detection; One-click deployment with no additional software or infrastructure to deploy and manage |
Statistics | |
GitHub Stars 8.1K | GitHub Stars - |
GitHub Forks 748 | GitHub Forks - |
Stacks 80 | Stacks 63 |
Followers 150 | Followers 59 |
Votes 15 | Votes 2 |
Pros & Cons | |
Pros
| Pros
|
Integrations | |
What are some alternatives to Sysdig, Amazon GuardDuty?
Grafana
Grafana is a general purpose dashboard and graph composer. It's focused on providing rich ways to visualize time series metrics, mainly though graphs but supports other ways to visualize data through a pluggable panel architecture. It currently has rich support for for Graphite, InfluxDB and OpenTSDB. But supports other data sources via plugins.
Kibana
Kibana is an open source (Apache Licensed), browser based analytics and search dashboard for Elasticsearch. Kibana is a snap to setup and start using. Kibana strives to be easy to get started with, while also being flexible and powerful, just like Elasticsearch.
Prometheus
Prometheus is a systems and service monitoring system. It collects metrics from configured targets at given intervals, evaluates rule expressions, displays the results, and can trigger alerts if some condition is observed to be true.
Nagios
Nagios is a host/service/network monitoring program written in C and released under the GNU General Public License.
Netdata
Netdata collects metrics per second & presents them in low-latency dashboards. It's designed to run on all of your physical & virtual servers, cloud deployments, Kubernetes clusters & edge/IoT devices, to monitor systems, containers & apps
Zabbix
Zabbix is a mature and effortless enterprise-class open source monitoring solution for network monitoring and application monitoring of millions of metrics.
Sensu
Sensu is the future-proof solution for multi-cloud monitoring at scale. The Sensu monitoring event pipeline empowers businesses to automate their monitoring workflows and gain deep visibility into their multi-cloud environments.
Graphite
Graphite does two things: 1) Store numeric time-series data and 2) Render graphs of this data on demand
Lumigo
Lumigo is an observability platform built for developers, unifying distributed tracing with payload data, log management, and real-time metrics to help you deeply understand and troubleshoot your systems.
StatsD
It is a network daemon that runs on the Node.js platform and listens for statistics, like counters and timers, sent over UDP or TCP and sends aggregates to one or more pluggable backend services (e.g., Graphite).
