.github
An AI-Enabled Open-Source Alternative to PagerDuty
How much are you paying for Incident Management? π€
Paging/On Call: ($$)
SIRT/Incident Management: ($$)
Analysis/Postmortem: ($$)
SLO/SLI Management: ($$)
DFIR (Digital Forensics & Incident Response): ($$)
Status Pages: ($$)
Uptime Monitoring: ($$)
...And the list/madness continues.
At UnStruct.ai, we're on a mission to cut through this nonsense.
In just a few minutes, you can deploy a solution that integrates world-class open-source projects like Dispatch by Netflix, Timesketch by Google, GoAlert by Target, and Uptime Kuma by Louislam. We've enriched these with AI, added our personal touch, and made significant enhancements. Setting it up is a breeze (with just one command), and for those curious about the internals, feel free to dive into the 500,000+ lines of code that tie everything together.
π https://github.com/unstructai/.github/blob/main/unstruct-install.md
One more thing: π‘
Did You Know? The average downtime cost for medium to large companies stands at a staggering $10,719/min. Furthermore, a single cybersecurity incident can set you back by $4.35 million. UnStruct's proposition? Slash these costs by over 15%.
\
UnStruct.AI Components
With UnStruct.AI, you're not just getting another cybersecurity tool β you're getting an all-in-one powerhouse. Instead of juggling multiple tools and racking up costs for each, get everything under one roof. Whether it's for paging, incident response, analysis, status updates, SLO/uptime monitoring, or a sprinkle of tech magic β we've got you covered. And the best part? It's all free.
π€ Incident-Copilot
Orchestrating Incident Response
OpsGPT Bot: Engage with your dedicated incident copilot and revolutionize your incident response experience.
Dynamic Case Management: Anticipate and address issues even before they escalate into incidents. Maintain a proactive stance.
Signal Processing: Efficiently detect, interpret, and respond to critical production signals from varied sources, ensuring you're always acting on relevant information and not getting bogged down by distractions.
Adaptable Plugin-Based Architecture for Scalable Integrations: In Unstruct, plugins serve as the essential integration glue, seamlessly connecting the platform to a variety of widely-used external systems across the industry. These include, but are not limited to, Slack, Jira, PagerDuty, ServiceNow, Zoom, Sentry, and Google, among others
π StoryCurve
Collaborative Incident & Forensic Analysis Dive deep into insights, stories, and forensic analysis. Get a granular understanding of every incident with collaborative tools.
π’ Uptime-Umbrella
User-Centric Status Pages & More Modern status updates, user feedback, incident mapping, and automated page updates. Plus, never miss a beat with SLO & Uptime Monitoring!
π¨ Peace-Pager
Reliable On-call & Alert Management Ensure swift responses with on-call scheduling. Benefit from seamless Slack integration and robust API access.
Try UnStruct.AI today and embrace the future of cybersecurity incident response.
\
Installation
Setting up comprehensive software can often become a tedious and error-prone process, especially when it involves integrating multiple components, each with its distinct configurations and settings. At UnStruct.AI, we understand this challenge. That's why we've simplified the installation process, ensuring you spend less time setting up and more time benefiting from our platform's capabilities.
One Command Install
Whether you're setting up for the first time or want to uninstall, we've distilled the process into one simple command:
./deploy_unstruct.sh install|uninstall|upgradeFull instructions at https://github.com/unstructai/.github/blob/main/unstruct-install.md
Want a Cloud Solution?
Interested in a hassle-free, cloud solution without dealing with installation and maintenance? Contact us at unsales@unstruct.ai. For the first 10 customers, we will only charge you (GCP) hosting fees for the first year of your usage.
\
Main Features
Plugin-Based Architecture with 20+ Integrations: Including Slack, PagerDuty, Jira, Google, Github, Zoom, Sentry, UnStruct Statuspage, and more.
Incident Custom Checklists: Streamline your process with SLA tracking, reminders, and easy configuration.
Custom Incident Fields: Tailor the platform to meet the unique attributes of your incidents.
Natural Language Parsing: Experience AI-assisted task assignment options, currently in Beta.
One-Click Task Creation/Update: Manage tasks with unparalleled simplicity and efficiency.
Automated Comms Reports: Receive executive and tactical reports generated by advanced AI, currently in Beta.
Automated Postmortem Checklists: Benefit from inclusive AI-generated insights and stories, currently in Beta.
Zoom Transcript Processing: Experience auto-summation and intelligent task suggestion functionalities.
Best Practices Enforcement: Built right into the platform; itβs training and education with the highest ROI.
TTP Monitoring: Rely on automated monitoring of Slack, Zoom, and document data for tactics, techniques, and procedures.
Dynamic Search and Engagement Filters: Enhance engagement with customizable filters for individuals, teams, services, runbooks, and more.
Dynamic Signal Processing: Navigate through the noise and manage pager storms effectively. Automatically transfer all the context as the issue escalates.
Probable Causes & Signal Aggregation: Seamlessly integrate with platforms like Sentry, Uptycs, Google, PagerDuty, and more. Currently in Beta.
Automated Annotations, Attribute Mining & Timelines: Foster comprehensive and collaborative incident management.
Modern, User-Centric Status Pages: Enjoy automated updates, user feedback, and incident mapping with specific pages.
SLO & Uptime Monitoring: Utilize multiple monitor types, API integration, and ready-to-use SLO monitoring.
Streamlined On-Call Handoff: Experience formal handoffs, reminders, and contextual summaries.
New Analytics Dashboards: Focus on people, feedback, and more.
Γber Timeline: Access org-wide aggregation of key metrics and attributes, such as sentiment.
UI Enhancements: Navigate with ease through our modernized and user-friendly interface.
Tag-Based Auto Participant Pulling: Leverage tags and metadata for participant compilation, currently in Beta.
Best Practices & Queries Extraction: Extract valuable insights directly from metadata.
API Keys & OIDC OAuth, RBAC and Private Incidents: Integrate securely and easily.
OpsGPT Incident Copilot: Get answers to up to 30 types of incident-related questions from our OpsGPT Bot, currently in Beta.
Cybersecurity Forensic Analysis: Employ automated analyzers, sigma rule creation, threat intelligence, and streamlined investigation with built-in search templates.
Automated Toil Tracking System: Systematically record, analyze, and manage work toil.
And Many More: Explore additional features including on-call scheduling, escalations, rotations, and more.
\
Visual Preview & In-Depth Feature Insights
\
Dynamic Incident Engagement & Intelligent Search Filters
Navigating through the labyrinth of data during an incident can be a daunting task, requiring precision and efficiency. That's where UnStruct.AIβs Search Filters & Engagements feature steps in, serving as your compass in times of chaos. This powerful tool enables you to swiftly identify and engage the right individuals, teams, or service owners, ensuring that they are seamlessly looped into the incident's developments.
\
Addressing Pager/Alert Storms Effectively with Intelligence
No matter the size or type of your team, a common challenge faced by organizations in production is dealing with pager storms. This scenario, depending on your setup for alerting and monitoring, is a widespread issue that often results in over-monitoring and alert fatigue. More critically, making sense of these alerts can be daunting, hindering teams from identifying the root cause of issues.
\
Adaptable Plugin-Based Architecture for Scalable Integrations
In Unstruct, plugins serve as the essential integration glue, seamlessly connecting the platform to a variety of widely-used external systems across the industry. These include, but are not limited to, Slack, Jira, PagerDuty, ServiceNow, Zoom, Sentry, and Google, among others. The elegance of this architecture lies in its plug-and-play nature. For instance, if you are utilizing a documents plugin to store your incident reports on Google, and another user prefers Confluence, the transition is as simple as modifying a setting. This adaptability is where the true power of the architecture is realized.
\
Pioneering Customizable Postmortem Checklists for Consistent Reporting
A recurring challenge observed in the compilation of postmortems is the considerable time often spent in assembling these reports. This issue, coupled with a lack of consistency and customization in the reporting templatesβwhether provided by external entities or internal to your organizationβresults in varied quality across postmortems. If visualized, the quality of these reports can be graphically represented as being scattered, highlighting a pressing need for uniformity and adaptability.
\
Pioneering Custom Incident Checklists for Enhanced Responsiveness
UnStruct introduces the pioneering concept of Custom Incident Checklists, a feature designed to enhance and standardize the incident response process. The premise is straightforward yet highly impactfulβevery incident type is accompanied by a unique checklist that outlines the steps or actions required for that specific incident. For instance, a security incident will have a distinct checklist compared to an availability incident.
\
Integrated Solution for Uptime/SLO Monitoring, Status Pages, and AI-Assisted Updates
In a digital landscape teeming with rudimentary status pages, envision a unified tool that seamlessly integrates uptime monitoring, SLO calculations, automatic notifications, and generative AI-driven updates. Such an innovative solution significantly diminishes the cognitive load on incident responders while enhancing system efficiency and reliability.
\
Unparalleled Infinite Configurability
We recognize that in a company of significant size, each team and organization may have distinct requirements and settings. With this understanding, Unstruct has been meticulously architected to accommodate a diverse range of configurations. The platform allows for the creation of multiple organizations within an instance, with each organization having the capability to host multiple projects.
\
Lightweight Task Framework
Tasks and follow-ups play a critical role in incident management. Tasks are actions aimed at resolution, essential to complete before marking an incident as closed, while follow-ups address additional concerns after stabilizing the incident. At UnStruct, we offer a seamless, lightweight mechanism to manage these elements efficiently.
\
Incorporated Security DNA
At the heart of UnStruct lies an intrinsic commitment to security, providing a plethora of options to monitor signals from various sources like Sentry, Uptycs, Pagerduty and more. The platform facilitates the seamless tying of signals by extracting entities and aligning them with Signal definitions, which subsequently map to cases. This enables the automatic engagement of the appropriate individuals and initiates end-to-end orchestration designed to monitor critical signals vital to your companyβs security interests.
\
People-First Platform
UnStruct is meticulously designed with a foundational philosophy of being a people-first, customer-centric platform. This design ethos ensures that users gain profound insights as they engage in incident management and resolution processes. Recognizing the pivotal role of individuals in addressing various incidents, our platform unveils unprecedented insights into aspects such as toil, stress, and sentiment, among others.
\
Embedded Privacy & RBAC
Acknowledging the paramount importance of privacy and role-based access control (RBAC), especially when managing private or sensitive incidents, UnStruct has been conscientiously designed with these principles embedded from the ground up. This foundational approach introduces the concept of private incidents β a feature allowing incidents to be marked as private, ensuring access is exclusively granted to designated responders.
\
Pioneering Non-Linear Timelines and Incident/Knowledge Graphs
Traditional timelines, with their seemingly infinite scroll, often prove cumbersome both during and after an incident. We recognized this challenge and devised an innovative solution to address it. While still in Beta, our approach aims to present timelines more intuitively, resembling a double-linked list. This design facilitates a quicker path to insights, allowing users to follow along seamlessly and efficiently.
\
How can you contribute to our mission?
UnStruct.AI: More than Just a Product
UnStruct.AI is not just a product; it's a vision for the future of cybersecurity incident response. As an open-source project, our strength comes from the collective intelligence and contributions of the community. Furthermore, it's built upon the foundation of several world-class open-source projects, harnessing their power and capabilities to offer a comprehensive and forward-thinking solution. Here's how you can be a part of this transformative journey:
Try unStruct: Whether you have a mac or a Linux Dev box or a cloud instance, give unStruct a try. We have made it really, really easy to do. It is also very secure as your data stays with you.
Code Contributions: Whether you're fixing a bug, improving performance, or adding a new feature, your code helps enhance UnStruct.AI for everyone. Check out our
CONTRIBUTING.mdguide to get started.Feedback and Suggestions: Used UnStruct.AI and have ideas on how it can be improved? We're all ears. Share your user experiences, suggest new features, or point out areas of improvement.
Documentation: Great software is only as good as its documentation. Help us make UnStruct.AI accessible to all by improving guides, tutorials, and API documentation.
Spread the Word: The more people know about UnStruct.AI, the better. Write about us on your blog, share on social media, or present at tech meetups and conferences.
Engage with the Community: Join our forums, chat channels, or monthly community calls. Share your expertise, collaborate with peers, and help newcomers find their way.
Bug Reports: Encountered an issue? Report it! Providing detailed bug reports helps us ensure the platform remains robust and reliable.
Integration and Extensions: Build integrations with other tools, design plugins, or develop extensions to increase UnStruct.AI's utility.
Beta Testing: Participate in our beta releases, test new features, and provide crucial feedback to ensure smooth and stable releases.
Every contribution, no matter how small, plays a vital role in shaping the future of UnStruct.AI. We're excited to have you aboard and together, let's revolutionize cybersecurity incident response!
\
Documentation π
At UnStruct.AI, we believe that comprehensive documentation is at the heart of a successful open-source project. Our documentation is designed to provide users, contributors, and developers with the knowledge they need to get the most out of UnStruct.AI.
Getting Started π
If you're new to UnStruct.AI, start here:
Installation Guide: Step-by-step instructions on setting up UnStruct.AI.
Quick Start Guide: Dive right in and see UnStruct.AI in action.
User Manual: Comprehensive guide on all features and functionalities.
For Developers π©βπ»π¨βπ»
For those looking to contribute or integrate with UnStruct.AI:
API Reference: Detailed information about our API endpoints.
Development Guide: Best practices and guidelines for contributing code.
Integration Tutorials: Learn how to integrate other tools and services with UnStruct.AI.
Advanced Topics π§
Dive deeper into specific functionalities:
Scaling and Performance: Best practices for running UnStruct.AI at scale.
Security Measures: Ensure your UnStruct.AI installation is secure.
Custom Extensions: How to create and integrate custom plugins.
Community and Support π€
Forums and Discussions: Engage with the community, ask questions, and share your experiences.
FAQs: Answers to commonly asked questions about UnStruct.AI.
Troubleshooting Guide: Solutions to common issues and challenges.
We're continually improving and expanding our documentation. If you have feedback, suggestions, or would like to contribute to the docs, please let us know!
"Good documentation is hard to write. But when done right, it makes software shine." - Anonymous
Our Decision to Go Open Source π
We've taken a deep dive into our decision-making process, reasoning, and philosophy behind going open source. It's a journey of passion, innovation, and commitment to the community.
π Read our full story here (It's a 30-min read)
From our foundational beliefs to the intricacies of our project decisions, we lay it all out for our community. Because transparency isn't just a word for us; it's our way of life.
Last updated