CiscoSecurity / fp-05-firepower-cef-connector-arcsightLinks
Cisco eStreamer client
☆24Updated 2 years ago
Alternatives and similar repositories for fp-05-firepower-cef-connector-arcsight
Users that are interested in fp-05-firepower-cef-connector-arcsight are comparing it to the libraries listed below
Sorting:
- scripts to configure the Splunk Universal Forwarder in a locked down state☆40Updated 6 years ago
- Ansible playbook for installing MineMeld on Linux☆48Updated 4 years ago
- MineMeld nodes for MISP☆19Updated last year
- ☆54Updated 3 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Updated 2 years ago
- Sysmon Splunk App☆47Updated 6 years ago
- Elastic Beat for fetching and shipping Office 365 audit events☆67Updated 4 years ago
- QRadar Export the rule set for printing☆22Updated 7 years ago
- A Splunk app with saved reports derived from Sigma rules☆73Updated 7 years ago
- Allows for MAC address to vendor mapping in Splunk☆16Updated last year
- Deploy and maintain Symon through the Splunk Deployment Sever☆31Updated 4 years ago
- Converts Sigma detection rules to a Splunk alert configuration.☆111Updated 5 years ago
- ☆55Updated 3 years ago
- SELinux Policy for Splunk☆56Updated 5 years ago
- Official Palo Alto Networks MineMeld docker☆17Updated 5 years ago
- WebUI of MineMeld☆43Updated 2 years ago
- This package allows the use of a custom Elastalert Alert which creates alerts with observables in TheHive using TheHive4Py.☆27Updated 4 years ago
- ☆34Updated 4 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 5 years ago
- Carbon Black Feeds☆72Updated 2 years ago
- Sunburst IOCs for Splunk Ingest☆18Updated 4 years ago
- Python library for the ArcSight logger REST API☆27Updated 3 years ago
- Integrate Zeek with Alienvault OTX☆25Updated 4 years ago
- Ingest Nessus files into Elasticsearch using PowerShell!☆21Updated last year
- ☆131Updated last year
- Risk Based Alerting Supporting Add-On (SA) for Splunk☆45Updated 3 years ago
- A website and framework for testing NIDS detection☆57Updated 3 years ago
- Volatility plugins developed and maintained by the community☆21Updated 8 months ago
- Ansible playbook to convert Sigma rules to ElastAlert rules☆10Updated 4 years ago
- Allows to pull asset and identity data into Splunk app for Enterprise Security from LDAP and other sources☆27Updated 7 years ago