Splunk TA paloaltoThe Palo Alto Networks Add-on for Splunk allows a Splunk® Enterprise or Splunk Cloud administrator to collect data from Palo Alto Networks Next-Generation Firewall devices and Advanced Endpoint Protection.
Stars: ✭ 15 (-55.88%)
SigmaGeneric Signature Format for SIEM Systems
Stars: ✭ 4,418 (+12894.12%)
Kong-API-ManagerKong API Manager with Prometheus And Graylog
Stars: ✭ 78 (+129.41%)
detection-rulesThreat Detection & Anomaly Detection rules for popular open-source components
Stars: ✭ 34 (+0%)
splunk-hec-goSplunk HTTP Event Collector (HEC) Golang library
Stars: ✭ 19 (-44.12%)
fanuc-driverConfigurable Fanuc Focas data collector and post processor.
Stars: ✭ 38 (+11.76%)
qradarUnofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.
Stars: ✭ 53 (+55.88%)
cli-eaaCLI for Enterprise Application Access (EAA)
Stars: ✭ 19 (-44.12%)
DsiemSecurity event correlation engine for ELK stack
Stars: ✭ 255 (+650%)
evtx2jsonA tool to convert Windows evtx files (Windows Event Log Files) into JSON format and log to Splunk (optional) using HTTP Event Collector.
Stars: ✭ 38 (+11.76%)
TA-Sysmon-deployDeploy and maintain Symon through the Splunk Deployment Sever
Stars: ✭ 31 (-8.82%)
skalogs-bundleOpen Source data and event driven real time Monitoring and Analytics Platform
Stars: ✭ 16 (-52.94%)
Blue-BaronAutomate creating resilient, disposable, secure and agile monitoring infrastructure for Blue Teams.
Stars: ✭ 23 (-32.35%)
semantic loggerSemantic Logger is a feature rich logging framework, and replacement for existing Ruby & Rails loggers.
Stars: ✭ 730 (+2047.06%)
splunk handlerPython logging handler for sending logs to Splunk Enterprise
Stars: ✭ 44 (+29.41%)
LogmiraLogmira by Blumira has been created by Amanda Berlin as a helpful download of Microsoft Windows Domain Group Policy Object settings.
Stars: ✭ 46 (+35.29%)
siembolAn open-source, real-time Security Information & Event Management tool based on big data technologies, providing a scalable, advanced security analytics framework.
Stars: ✭ 153 (+350%)
Vast🔮 Visibility Across Space and Time
Stars: ✭ 227 (+567.65%)
MozdefDEPRECATED - MozDef: Mozilla Enterprise Defense Platform
Stars: ✭ 2,164 (+6264.71%)
SiemSIEM Tactics, Techiques, and Procedures
Stars: ✭ 157 (+361.76%)
XcyclopediaEncyclopedia for Executables
Stars: ✭ 148 (+335.29%)
YpsilonAutomated Use Case Testing
Stars: ✭ 135 (+297.06%)
Threathunting SplSplunk code (SPL) useful for serious threat hunters.
Stars: ✭ 117 (+244.12%)
TA ETWSplunk Technology Add-On (TA) for collecting ETW events from Windows systems
Stars: ✭ 17 (-50%)
config explorerConfig viewer and file editor for Splunk. Based on VSCode.
Stars: ✭ 20 (-41.18%)
SWELFSimple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here at https://github.com/ceramicskate0/SWELF/releases/latest.
Stars: ✭ 23 (-32.35%)
GDPatrolA Lambda-powered Security Orchestration framework for AWS GuardDuty
Stars: ✭ 50 (+47.06%)
LogESPOpen Source SIEM (Security Information and Event Management system).
Stars: ✭ 162 (+376.47%)
SiacSIAC is an enterprise SIEM built on open-source technology.
Stars: ✭ 100 (+194.12%)
ansible-role-auditbeatAnsible role to install auditbeat for security monitoring. (Ruleset included)
Stars: ✭ 15 (-55.88%)
vault-plugin-splunkVault plugin to securely manage Splunk admin accounts and password rotation
Stars: ✭ 23 (-32.35%)
TA-bigfixSplunk technical add-on (TA) for ingesting BigFix client, relay, and server logs. Includes REST inputs for ingesting assets, relevant fixlets, action summaries, and analysis results.
Stars: ✭ 15 (-55.88%)
spring-microservices-in-actionThe source code of the book "Spring Microservices in Action (John Carnell)" and the personal summary of technical essentials about Spring Boot for microservices.
Stars: ✭ 54 (+58.82%)
SplunkScripletsVarious Splunk Scripts and applets, all in one place
Stars: ✭ 24 (-29.41%)
ansible-role-for-splunkSplunk@Splunk's Ansible role for installing Splunk, upgrading Splunk, and installing apps/addons on Splunk deployments (VM/bare metal)
Stars: ✭ 75 (+120.59%)
splunk-otel-js-webSplunk distribution of Open Telemetry for browser environment.
Stars: ✭ 23 (-32.35%)
Sagan** README ** This repo has MOVED to https://github.com/quadrantsec/sagan
Stars: ✭ 236 (+594.12%)
MalwlessTest Blue Team detections without running any attack.
Stars: ✭ 215 (+532.35%)
TA-opnsenseSplunk Add on for OPNsense firewall
Stars: ✭ 13 (-61.76%)
Ee OutliersOpen-source framework to detect outliers in Elasticsearch events
Stars: ✭ 172 (+405.88%)
kafka-connect-splunkKafka Connect connector for receiving data and writing data to Splunk.
Stars: ✭ 25 (-26.47%)
Awesome CybersecurityCurated list of awesome cybersecurity companies and solutions.
Stars: ✭ 77 (+126.47%)
OpenubaA robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by Data Scientists & Security Analysts from the Cyber Security Industry. [PRE-ALPHA]
Stars: ✭ 127 (+273.53%)
RedelkRed Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.
Stars: ✭ 1,692 (+4876.47%)
mapleType-safe, consistently named and formatted, structured logging wrapper for SLF4J that's ideally suited for your logging aggregator.
Stars: ✭ 39 (+14.71%)
TA-dmarcAdd-on for ingesting DMARC aggregate reports into Splunk
Stars: ✭ 14 (-58.82%)
awesomekqlAzure Sentinel intrusion detection rules, recent exploits and lolbas :)
Stars: ✭ 16 (-52.94%)
vagrant-idsAn Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk
Stars: ✭ 21 (-38.24%)
siemstressVery basic CLI SIEM (Security Information and Event Management system).
Stars: ✭ 24 (-29.41%)
twitter-aws-comprehendAn app to analyze tweets using Amazon Comprehend's Sentiment Analysis service
Stars: ✭ 13 (-61.76%)