cnsl (Correlated Network Security Layer) is an open-source, self-hosted SIEM for Linux that provides network security monitoring, intrusion detection, and threat analysis. It supports SSH and brute-force detection, integrates with honeypots, and is designed for system administrators seeking on-premises security solutions.
In the Security & compliance platforms space, cnsl takes a focused approach. It focuses on detecting and responding to network security threats on Linux systems with a self-hosted SIEM. cnsl is an open-source project aimed at linux system administrators. The project is open source (MIT). cnsl is available on the command line, and it can be self-hosted.
rahadbhuiya builds and maintains cnsl, and the product first shipped in 2026. Across PulseGate's embedding index, cnsl has few near neighbours, marking it as relatively distinct. Among its 8 catalogued features are SIEM, threat detection, and SSH monitoring.
Latest indexed changes and source events
Other apps tracked under the same category.