Open Source

Radegast EDR is built on open-source foundations. Inspect the code, contribute, and own your security stack.

// open source

Radegast EDR is free, open-source, and licensed under the Apache 2.0 License. Every component is inspectable, forkable, and community-improvable.

We believe security software should be transparent by design. You should be able to verify exactly what telemetry is collected, how detections work, and what the agent can and cannot do on your systems.

---

GitHub Organization

🏢

radegast-edr

The official GitHub organization for Radegast EDR. Repositories, issues, roadmaps, and release artifacts live here.

github.com/radegast-edr →

The Detection Engine: Rustinel

rustinel

Open-source endpoint detection engine

The core agent powering Radegast EDR is Rustinel — an independent open-source project by @Karib0u. It combines ETW, eBPF, Sigma, YARA, IOC matching, and ECS NDJSON alert output in a single Rust binary for Windows and Linux.

View Rustinel on GitHub → Releases ↗ Documentation ↗

License

Radegast EDR and Rustinel are both released under the Apache License 2.0 — a permissive open-source license that lets you use, modify, and distribute the software freely, even in commercial contexts, with attribution.

Copyright 2026 Radegast EDR Contributors

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

    http://www.apache.org/licenses/LICENSE-2.0

---

Contributing

We welcome contributions of all kinds:

• Detection rules — Sigma and YARA rules for new threat patterns
• Bug reports and fixes — issues and PRs on GitHub
• Platform support — new OS/architecture coverage
• Documentation — guides, examples, and translations
• Testing — lab deployments, feedback, and edge cases

See CONTRIBUTING.md in the Rustinel repo to get started.

---

Security

Please report vulnerabilities through the appropriate channel depending on which component is affected.

Radegast EDR platform (console, web, infrastructure) — follow the security.txt for this site, or email security@radegast.app. Do not open public issues.

Rustinel agent engine — follow the SECURITY.md in the Rustinel repository.