Pinned Repositories
SA-RBA
Risk Based Alerting Supporting Add-On (SA) for Splunk
SA-mitre
This app provides a method to ingest MITRE ATT&CK tactics, techniques, and subtechniques into Splunk events. The app contains a mitre_techniques KVStore with the metadata provided from MITRE to help enrich alerts and ES Correlations without needing to navigate back to MITRE.
tonysweet's Repositories
tonysweet doesn’t have any repository yet.