OwlH Documentation home

About OwlH

Security world is not related to a tool. It is related to a continuous process that must be able to evolve and adapt to your network, systems, and software as they do.

Also, Security and cyber-security terms are a really big and complex world with a huge amount sub-worlds, regions, areas, or whatever how you would like to call them

OwlH is born to help with one piece of this galaxy. We can summarize it as help to implement and maintain Network Traffic Analysis process based in Network IDS open source solutions. But a process is not just a tool or a solution, it will contain tasks, tools, solutions and it must evolve and adapt.

So, OwlH is about that, a platform to provide process definitions that will use 3rd party tools or solutions, our own tools, and our tasks definition to successfully implement them.

This picture will summarize the process we are working in.


A few topics

Our target is to provide help for:

  • Network IDS integration with Host IDS solution like Wazuh in a single pane of glass
  • On-Premises Network IDS
  • Cloud Network IDS by Software TAP and traffic transport
  • Network IDS Orchestration
  • Alert Enrichment
  • Data Visualization
  • Adapt and response

As per our latest version, in OwlH solution you may find:


If you need help:

OwlH - current v0.8 - Aug : New version details

documentation last updated - Sep 18, 2019