Can it parse Zeek logs to identify long-running TCP connections and/or identify user attempts to access a DNS blocked domain?
replies(1):
Coroot was designed to solve the problem of manual, time-consuming observability analysis: it handles the full observability journey — from collecting telemetry to turning it into actionable insights. We also strongly believe that simple observability should be an innovation everyone can benefit from: which is why our software is open source.
Features:
- Cost monitoring to track and minimise your cloud expenses (AWS, GCP, Azure.)
- SLO tracking with alerts to detect anomalies and compare them to your system’s baseline behaviour.
- 1-click application profiling: see the exact line of code that caused an anomaly.
- Mapped timeframes (stop digging through Grafana to find when the incident occurred.)
- eBPF automatically gathers logs, metrics, traces, and profiles for you.
- Service map to grasp a complete at-a-glance picture of your system.
- Automatic discovery and monitoring of every application deployment in your kubernetes cluster.
We welcome any feedback and hope the tool can improve your workflow!