Vajra is an indigenous cybersecurity tool built to manage, detect, and respond to endpoint threats. Vajra’s core strength is in its ability to gather fine-grained contextual information from the endpoints in real time and robust rules to detect malicious activities. Vajra’s agent is lightweight and supports both Linux and Windows. It makes the system activities logs available as a queriable database, making it easier to detect potential threats and perform incident response using SQL queries. Vajra’s inbuilt detection rules include all the Tactics, Techniques, and Procedures of MITRE ATT&CK frame and allow new rules to be added on the fly without disruptions. Vajra also provides complete invisibility of activities within the docker container, enabling the security of containers.

More details about Vajra are available at www.getvajra.com
To install Vajra visit https://github.com/VajraSecurity/Install (to be made public)

We acknowledge funding support form NCETIS and TCA2I at IIT Bombay and CDSL.