Alternatives and similar repositories for spl2dsl

Users that are interested in spl2dsl are comparing it to the libraries listed below

• Anonymity94 / spl2sql
  Convert Splunk SPL to ClickHouse SQL with pegjs
  ☆13Updated 3 years ago
• cameling / logminer
  Mine patterns from logs
  ☆27Updated 8 years ago
• ffly1985 / splunk_antlr_spl
  ☆23Updated 4 years ago
• chenryn / ESPL
  Elastic Search Processing Language
  ☆50Updated 8 years ago
• Egida-Kassandra / kassandra
  Analysis of HTTP traffic and detection of anomalous user behavior in allowed actions. UEBA system.
  ☆24Updated 2 years ago
• njcx / RuleCat
  GO开发而成，用于NIDS HIDS 分析的规则引擎，使用WorkerPool 高性能检测，支持多字段 "和" "或" 检测， 支持频率检测
  ☆77Updated 6 months ago
• threathunterX / nebula_doc
  nebula 文档, gitbook版
  ☆73Updated 6 years ago
• bytedance / Elkeid-HUB
  Elkeid HUB is a rule/event processing engine maintained by the Elkeid Team that supports streaming/offline (not yet supported by the comm…
  ☆98Updated 2 years ago
• arvindpj007 / Suricata-Detect-DoS-Attack
  Configuring the Suricata IDS to detect DoS attacks by adding custom rule file.
  ☆39Updated 5 years ago
• myntra / cortex
  A fault-tolerant events/alerts correlation engine
  ☆25Updated 6 years ago
• childe / dopey
  ES索引的维护脚本, 每天close delete reallocate optimize索引
  ☆23Updated 6 years ago
• didi / sgt
  didiyun super-agent daemon
  ☆58Updated 6 years ago
• apache / metron-bro-plugin-kafka
  Apache Metron
  ☆60Updated 4 years ago
• LianjiaTech / d18n
  d18n is a data desensitization tool for RDBMS.
  ☆175Updated 2 years ago
• AlkenePan / awesome-bro
  Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))
  ☆31Updated 5 years ago
• infinilabs / gateway
  🚀 A High-performance Gateway Designed for Search Scenarios. Good friend of Elasticsearch / Opensearch / Easysearch.
  ☆66Updated 2 weeks ago
• variationalkk / User-and-Entity-Behavior-Analytics-UEBA
  User and Entity Behavior Analytics by deep learning
  ☆113Updated 4 years ago
• al0ne / suricata_optimize
  Suricata安装部署&丢包优化&性能调优&规则调整&Pfring设置
  ☆141Updated 5 years ago
• njcx / Artemis_HIDS
  使用 cgroups + etcd + kafka + netlink-connector 开发而成的hids的架构，agent 部分使用go 开发而成， 会把采集的数据写入到kafka里面，由后端的规则引擎（go开发而成）消费，配置部分以及agent存活使用etcd。
  ☆19Updated 4 years ago
• haoch / flink-siddhi
  A CEP library to run Siddhi within Apache Flink™ Streaming Application (Not maintained)
  ☆246Updated last year
• iqiyi / qnsm
  QNSM is network security monitoring framework based on DPDK.
  ☆528Updated 3 years ago
• kiwiz / esquery
  Elasticsearch querying library
  ☆20Updated 6 years ago
• salspaugh / splparser
  Simple parser for Splunk Processing Language (SPL) written in Python.
  ☆35Updated 7 years ago
• infinilabs / console
  🏵️ A lightweight multi-cluster, cross-version unified Elasticsearch / Opensearch / Easysearch governance platform.
  ☆67Updated this week
• DTStack / jfilebeat
  类filebeat的轻量级日志采集工具
  ☆69Updated 6 years ago
• nienie / window
  golang sliding or tumbling window stream-processing
  ☆12Updated 4 years ago
• RickyHuo / hangout-output-clickhouse
  Implementation of ClickHouse output for hangout
  ☆87Updated 3 years ago
• dounine / flink-cep
  flink-cep
  ☆17Updated 6 years ago
• GACWR / OpenUBA
  A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by D…
  ☆440Updated last year
• promisechen / suricata
  suricata源码分析和读书笔记
  ☆24Updated 7 years ago