Mini‑SIEM (Wazuh + OpenSearch)

A simple nginx log data pipeline demonstration with Filebeat, Logstash, Python, and AWS/local OpenSearch.

A lightweight, all-in-one Security Operations Center (SOC) lab for threat hunting and log analysis. This project integrates Suricata (IDS/IPS), Zeek (network analysis), Fluent Bit (log shipper), and OpenSearch into a functional mini-SIEM.