splunk
There are 1219 repositories under splunk topic.
openobserve/openobserve
🚀 10x easier, 🚀 140x lower storage cost, 🚀 high performance, 🚀 petabyte scale - Elasticsearch/Splunk/Datadog alternative for 🚀 (logs, metrics, traces, RUM, Error tracking, Session replay).
SigmaHQ/sigma
Main Sigma Rule Repository
graphistry/pygraphistry
PyGraphistry is a Python library to quickly load, shape, embed, and explore big graphs with the GPU-accelerated Graphistry visual graph analyzer
siglens/siglens
100x Efficient Log Management than Splunk :rocket: Reduce your observability cost by 90%
splunk/security_content
Splunk Security Content
orlangure/gnomock
Test your code without writing mocks with ephemeral Docker containers 📦 Setup popular services with just a couple lines of code ⏱️ No bash, no yaml, only code 💻
olafhartong/ThreatHunting
A Splunk app mapped to MITRE ATT&CK to guide your threat hunts
infosecB/awesome-detection-engineering
Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
reidmorrison/semantic_logger
Semantic Logger is a feature rich logging framework, and replacement for existing Ruby & Rails loggers.
zentralopensource/zentral
Zentral is a high-visibility platform for controlling Apple endpoints in enterprises. It brings great observability to IT and makes tracking & reporting compliance much less manual.
mthcht/ThreatHunting-Keywords
Awesome list of keywords and artifacts for Threat Hunting sessions
ANSSI-FR/ADTimeline
Timeline of Active Directory changes with replication metadata
blackhillsinfosec/EventLogging
Automation scripts to deploy Windows Event Forwarding, Sysmon, and custom audit policies in an Active Directory environment.
Dicklesworthstone/automatic_log_collector_and_analyzer
Replace Splunk in your small company with this one weird trick!
splunk/splunk-connect-for-kubernetes
Helm charts associated with kubernetes plug-ins
ecstatic-nobel/OSweep
Don't Just Search OSINT. Sweep It.
inodee/threathunting-spl
Splunk code (SPL) for serious threat hunters and detection engineers.
cloudmarker/cloudmarker
Cloud security monitoring tool and framework
pe3zx/crowdstrike-falcon-queries
A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon
LinMingQiang/sparkstreaming
:boom: :rocket: 封装sparkstreaming动态调节batch time(有数据就执行计算);:rocket: 支持运行过程中增删topic;:rocket: 封装sparkstreaming 1.6 - kafka 010 用以支持 SSL。
P4T12ICK/ypsilon
Automated Use Case Testing
splunk/splunk-connect-for-syslog
Splunk Connect for Syslog
krdmnbrk/AttackRuleMap
Mapping of open-source detection rules and atomic tests.
splunk/ansible-role-for-splunk
Splunk@Splunk's Ansible role for installing Splunk, upgrading Splunk, and installing apps/addons on Splunk deployments (VM/bare metal)
siddharthajuprod07/youtube
This repo will have all the data and codes I have used for my youtube channel
sduff/awesome-splunk
A collection of awesome resources for Splunk
splunk/splunk-platform-automator
Ansible framework providing a fast and simple way to spin up complex Splunk environments.
Kwangsa19/Ketmanto-Cybersecurity-Portfolio
I developed a rigorous cybersecurity project portfolio on mock clients covering NIST, audits, Linux, SQL, assets, threats, vulnerabilities, detection, incident response, escalation, Wireshark, tcpdump, IDS (Suricata), SIEM (Splunk, Chronicle), and Python automation.
nsacyber/Certificate-Authority-Situational-Awareness
Identifies unexpected and prohibited certificate authority certificates on Windows systems. #nsacyber
PaloAltoNetworks/Splunk-Apps
Palo Alto Networks App for Splunk leverages the data visibility provided by Palo Alto Networks next-generation firewalls and endpoint security with Splunk's extensive investigation and visualization capabilities to deliver an advanced security reporting and analysis tool.
Ladder99/fanuc-driver
Configurable Fanuc Focas data collector and post processor.
mf1d3l/Splunk4DFIR
Harness the power of Splunk for your investigations
anvilogic-forge/armory
Anvilogic Forge
nheijmans/malzoo
Mass static malware analysis tool
prbinu/dmarc-report-processor
Scripts to pull DMARC reports from your mailbox (imap client) and convert it to Splunk friendly comma-separated key-value format
safernandez666/Kong-API-Manager
Kong API Manager with Prometheus And Graylog