Open Source Security Automation and Monitoring Solution

Alertflex project is a free, open-source continuous security monitoring solution designed for use in Hybrid Clouds (on-premises and cloud-based IT infrastructure). By monitoring security events and reports from well-known cybersecurity applications, Alertflex gives companies end-to-end security visibility. The project adapts and automates third-party software products into a unified solution based on the CTI SOAR XDR technology stack.

Alertflex requires fewer system resources compared with similar products and mostly integrates of free open-source third-party software. It can significantly reduce costs for your cybersecurity monitoring.

Alert triage

Alerts filtering, prioritization and visualization

free open source IDS, vulnerabilities scaner tools

Detection intrusions, vulnerabilities and misconfigurations

integration Host IDS, Network IDS, Cloud-Native runtime security

Integrated analysis network, containers and hosts

free open source SOAR

Security operations automation and response

Alertflex solution includes Management console and Docker container of MISP platform. To see more screenshots solution's Web UI , please, scroll the right image.

Have a question or need tech support, please send an email to our contact address

and join the Alertflex community via our Discord server


  • Alerts filtering, prioritization and visualization

  • Security operations automation and response

  • Central node configuration is bare-metal server or virtual machine

  • One project, single tenant

  • Community support


  • Alerts filtering, prioritization and visualization

  • Security operations automation and response

  • Central node configuration is scalable microservice architecture

  • Multiple projects, multi-tenancy

  • Tech support, custom integration, consulting

integration with Wazuh EDR / HIDS

Wazuh EDR / HIDS

integration with Suricata NIDS

Suricata NIDS

integration with Falco CRS

Falco CRS

Automation SSH tasks

Automation SSH tasks

>Automation SFTP tasks

Automation SFTP tasks

integration with Groovy


integration with Maxmind


>integration with VirusTotal


integration with MISP

Malware Information Sharing Platform

integration with JIRA


integration with ThHive


integration with STIX-shifter, OpenDXL

STIX-Shifter, OpenDXL

integration with OpenScap

OpenScap reports

integration with OWASP ZAP

OWASP ZAP scanner

integration with Nmap

Nmap scanner

integration with Cuckoo

Cuckoo Sandbox

integration with Falcon Sandbox

Falcon Sandbox

integration with VMRay Sandbox

VMRay sandbox

integration with Grafana


integration with Prometheus


integration with Opendistro

Anomaly detection

integration with Docker Bench

Docker Bench for Security

integration with Trivy


integration with Amazon Comprehend

Amazon Comprehend

integration with Twilio

Twilio SMS

integration with SendGrid

SendGrid Email

integration with Slack