Prelude is a Universal "Security Information Event Management" (SIEM) system. Prelude collects, archives, normalizes, sorts, aggregates, correlates and reports all security-related events independently of the product brand or license giving rise to such events; Prelude is "agentless".
A Security Information and Event Management (SIEM) gathers heterogeneous information system equipment data at a single point and provides comprehensive human-readable security reports.
Prelude collects, analyzes and correlates all the information of the system and extracts suspicious events in real time to alert operators of a possible intrusion.
Prelude collects sets of logs from the information system, stores and indexes them in a database and thus provides a means for operators to perform security analysis by searching through this data.
Prelude offers advanced analysis and graphical interfaces on all real-time and archived data to assist operators in their analytical work. This module allows you to generate reports in various formats intended towards company management.
Prelude OSS Open Source version of Prelude. It is published under the GPL V2.
Prelude OSS implements the event management part of Prelude (SEM).
It provides the basic functionality to manage a small or experimental system.
Prelude OSS is composed of the following modules:
PreludePro is based on open-source version of Prelude (Prelude OSS) and it takes advantage of the robustness and reliability of a system tested by hundreds of users over 10 years.
But PreludePro offers many additional features and capabilities to be deployed and operated easily and efficiently on complex and large-scaled parks of machines.
Prelude OSS share a common base with Prelude Pro but this version is intended for small parks, students and researchers as well as for testing by users interested in acquiring Prelude Pro.
The table below details the features of each edition.