inspired

inspired's Stars

• jlevy/the-art-of-command-line

  Master the command line, in one page

  154k2.8k25414.6k

• microsoft/Microsoft-365-Defender-Hunting-Queries

  Sample queries for Advanced hunting in Microsoft 365 Defender

  Language:Jupyter Notebook1.9k19736539

• burghardt/easy-wg-quick

  Creates Wireguard configuration for hub and peers with ease

  Language:Shell1k3234109

• correlatedsecurity/Awesome-SOAR

  A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.

  816440131

• netsampler/goflow2

  High performance sFlow/IPFIX/NetFlow Collector

  Language:Go51116138114

• splunk/splunk-ansible

  Ansible playbooks for configuring and managing Splunk Enterprise and Universal Forwarder deployments

  Language:Python35752199188

• mthcht/Purpleteam

  Purpleteam scripts simulation & Detection - trigger events for SOC detections

  Language:PowerShell1657118

• nocproject/noc

  Official read only mirror for

  Language:Python12411034

• jymcheong/SysmonResources

  Consolidation of various resources related to Microsoft Sysmon & sample data/log

  Language:Python1043023

• splunk/rba

  RBA is Splunk's method to aggregate low-fidelity security events as interesting observations tagged with security metadata to create high-fidelity, low-volume alerts.

  491789

• MattUebel/splunk_UF_hardening

  scripts to configure the Splunk Universal Forwarder in a locked down state

  Language:PowerShell40718

• gjanders/Splunk

  Splunk (Other Splunk scripts which do not fit into the SplunkAdmins application)

  Language:Python39328

• klockcykel/godiode

  Golang PoC software for reliable file transfers over a data diode. DIY gigabit data diode hardware instructions

  Language:Go394910

• splunk/azure-functions-splunk

  Azure Functions for getting data in to Splunk

  Language:JavaScript31161734

• Exporttool/exporttool

  This is a python script that can be run on each Splunk Indexer for the purpose of exporting historical bucket data (raw events + metadata) at scale by balancing the work across multiple CPUs then forwarding to Cribl.

  Language:Python9203

• tmuth/splunk-export

  Language:Python81251

• hovu96/splunk_as_a_service_app

  A Splunk app to deploy, manage and monitor Splunk environments in remote Kubernetes clusters

  Language:Python73351

• jorritfolmer/TA-ad-assets-identities

  Dump all users, groups and computers from an Active Directory domain into an asset and identities lookup usable by Splunk Enterprise Security.

  Language:Python7402

• Sens-Consulting/TA-microsoft-365-defender-threat-vulnerability-add-on

  Language:Python7120

• doksu/TA-statemachine

  State Machine Technology Add-On for Splunk

  Language:Python6201

• hobbes3/meraki

  Language:Python4300

• mnatkin-splunk/SOAR_Autobahn

  Language:Python4301

• murchisd/splunk_rerun_app

  Repository for Splunk Rerun Application

  Language:Python3101

• bcusick65/splunk_risk_visuals

  Visualization repo for Splunk and ES

  Language:JavaScript2100

• stressboi/TA-hrs

  Language:Batchfile2100

• bentleymi/ta-ms_loganalytics

  TA-ms-loganalytics

  Language:Python1102

• jmaas/splunk-ta-journald

  Simple TA to enable on-boarding of journald events into Splunk.

  Language:Shell1100

• lucas-alados/netflow_sample_dashboards

  Netflow sample dashboards app for Splunk

  110

• SILJAEUROPA/Splunk-Delay-Detector

  Detects Delays in recently ran Splunk saved searches

  Language:Python1

• thilles/splunk_admin_views

  1100