OWASAKA SIEM

Air-gapped SIEM documentation

Operational notes for building, deploying, and running O.W.A.S.A.K.A.

Open Watchful Air-gapped Security Analysis Kit & Architecture is a local-first security monitoring platform built around isolation, provenance, and practical incident response.

Architecture Deployment

Current focusPre-production hardening

Runtime: Go + Svelte
Security: RBAC, signing, transparency
Ops: Runbooks, backups, NixOS

Architecture

System design, data model, storage boundaries, and development phases.

Identity & Authorization

Principal model, RBAC, credential operations, event signing, and rotation.

Deployment

Dedicated host setup, NixOS service integration, and operational layout.

Runbooks

Incident flow, disaster recovery, log analysis, and common failure paths.

Quick paths

Use these when you need a direct entry point instead of browsing the full sidebar.

Development guide
API documentation
Secrets bootstrap
Observability setup