Build the 1 Minute QuickstartGet the Latest ReleaseSee the CHANGELOGCreate a Feature Request / Bug ReportJoin the Conversation

What is Substation?

Substation is a cloud-native, event-driven data pipeline toolkit built for security teams.

Suggest Edits

Substation provides three capabilities:

  • Deploy modular, serverless data pipelines in minutes
  • Evaluate and transform event logs in real-time
  • Create custom data processing applications written in Go

Features

Deploy Modular, Cloud Native Data Pipelines

  • Design data pipelines based on your unique use cases and requirements
  • Autoscale beyond 100,000 events per second with almost zero maintenance
  • Route data to SIEMs, data lakes, and other log management platforms

Evaluate & Transform Data

  • Evaluate data before applying transformation functions and routing decisions
  • Normalize data to a common schema for easy analysis and correlation
  • Enrich data with threat, infrastructure, and business context

Build Custom Data Processing Apps

  • Build Substation applications that run in any cloud environment or on-prem
  • Use Substation's Go packages to evaluate and transform data in your own applications

Updated 2 months ago