0xrajneesh / Splunk-SIEM-Home-Lab
A powerful home-lab focused on setting up Splunk SIEM and real-world use cases. If you’re interested to become SOC Analyst(Tier 1/2) , this lab will help you with SOC tools, rules, queries, apps and integration.
☆51Updated last year
Alternatives and similar repositories for Splunk-SIEM-Home-Lab:
Users that are interested in Splunk-SIEM-Home-Lab are comparing it to the libraries listed below
- Hands-on cybersecurity projects to enhance skills in phishing investigation, malware analysis, network intrusion detection, and DDoS atta…☆124Updated 10 months ago
- Unlock the power of Splunk SIEM for comprehensive log analysis. Collaborate and innovate with our Splunk Log Analysis Projects on GitHub☆126Updated 10 months ago
- ☆173Updated last year
- A Python script for analyzing email files to extract IP addresses, URLs, headers, and attachments, with functionalities for defanging IPs…☆21Updated 6 months ago
- SIEM Cheat Sheet☆73Updated last year
- Playbooks for SOC Analysts☆447Updated 2 years ago
- ThreatSeeker: Threat Hunting via Windows Event Logs☆120Updated last year
- Welcome to Project KillChain, a comprehensive GitHub repository for Red and Blue Teams. This repository houses tools, scripts, technique…☆101Updated 8 months ago
- A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as …☆390Updated 3 months ago
- Open Source Security Operations Center Documentation☆176Updated this week
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆239Updated last month
- ☆47Updated last month
- Cybersecurity Security Operations Center (SOC) Analyst NOW, by EC-Council☆25Updated 2 years ago
- ☆45Updated last year
- 🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.☆72Updated 3 weeks ago
- Some Threat Hunting queries useful for blue teamers☆125Updated 2 years ago
- Repository for sharing examples of our artifacts data and for use in new analyst recruitment.☆90Updated last week
- Some important DFIR Resources☆83Updated 2 years ago
- Purpleteam scripts simulation & Detection - trigger events for SOC detections☆184Updated 4 months ago
- ☆209Updated 11 months ago
- A collection of various SIEM rules relating to malware family groups.☆66Updated 10 months ago
- This repository contains Splunk queries to hunt some anomalies☆41Updated 2 years ago
- SOAR Automation with Shuffle, Wazuh & TheHive | This project integrates Shuffle SOAR, Wazuh SIEM, and TheHive to automate security incide…☆97Updated 2 months ago
- AI-Powered Dark Web OSINT Tool☆36Updated this week
- Useful resources about phishing email analysis☆82Updated 2 months ago
- ☆58Updated 3 years ago
- CarbonBlack EDR detection rules and response actions☆71Updated 7 months ago
- Windows Malware Investigation Scripts & Docs☆81Updated 5 months ago
- MISP Playbooks☆197Updated 2 months ago
- A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…☆102Updated 2 years ago