Pinned Repositories
arcsight2win
conf20_PLA1471C
Repository for Splunk .Conf20 session PLA1471C Leveraging Splunk in a Chaotic Data World
Corelight-Threat-Hunting-Guide-SIGMA-Pack
Corelight Threat Hunting Guide SIGMA Pack - Added TH searches and dashbaord to the splunk app
DataModels_View
A simple dashboard to display Splunk's Data Models, Datasets, Constraints and Fields
dragos_threat_actors_to_splunk
From Dragos Threat Activity Groups Mapping to Splunk Detections
ICS_CERT_TA
ICS-CERT Advisories project add-on for Splunk
smart_win_security_app_for_splunk
smart_win_security_app_for_splunk
syslog2win
Splunk app providing local conf for making syslog`d Windows events compatible with TA-Windows, data models and Splunk Security Essentials and ES
TA-gvm
Technical Add-on for Greenbone Vulnerability Manager
winlogbeat2splunk
Local config files for splunk Windows Add-On
efi-k's Repositories
efi-k/ICS_CERT_TA
ICS-CERT Advisories project add-on for Splunk
efi-k/conf20_PLA1471C
Repository for Splunk .Conf20 session PLA1471C Leveraging Splunk in a Chaotic Data World
efi-k/Corelight-Threat-Hunting-Guide-SIGMA-Pack
Corelight Threat Hunting Guide SIGMA Pack - Added TH searches and dashbaord to the splunk app
efi-k/dragos_threat_actors_to_splunk
From Dragos Threat Activity Groups Mapping to Splunk Detections
efi-k/arcsight2win
efi-k/DataModels_View
A simple dashboard to display Splunk's Data Models, Datasets, Constraints and Fields
efi-k/smart_win_security_app_for_splunk
smart_win_security_app_for_splunk
efi-k/syslog2win
Splunk app providing local conf for making syslog`d Windows events compatible with TA-Windows, data models and Splunk Security Essentials and ES
efi-k/TA-gvm
Technical Add-on for Greenbone Vulnerability Manager
efi-k/winlogbeat2splunk
Local config files for splunk Windows Add-On
efi-k/attack_data
A repository of curated datasets from various attacks
efi-k/COVID-19
Novel Coronavirus (COVID-19) Cases, provided by JHU CSSE
efi-k/hello-world
The begining
efi-k/ICS-CERT
ICS-CERT
efi-k/ICS-vendors
List of ICS vendors, based on ICS-CERT alerts and advisories
efi-k/ML_used_in_splunk_and_elk
Splunk Enterprise Security & Elastic SIEM built-in Machine Learning based rules
efi-k/OSSEM-DM
OSSEM Detection Model
efi-k/python-opcua
LGPL Pure Python OPC-UA Client and Server
efi-k/security_content
Splunk Security Content
efi-k/splunk-3D-graph-network-topology-viz
Plot relationships between objects with force directed graph based on ThreeJS/WebGL.
efi-k/splunk-icons-draw-io
splunk icons
efi-k/splunk_app_gvm
Splunk App for Greenbone Vulnerability Manager (formerly OpenVAS)
efi-k/Splunk_ConfVersion_App-and-TA
Splunk App and TA that allows to see the configuration changes on your Splunk server ecosystem.
efi-k/Splunk_ConPot_App
An app for processing ConPot ICS/SCADA Honeypot logs (http://conpot.org/)
efi-k/SplunkConf19_SessionInfo
Full session information guide for Splunk .conf 2019