DanielSchwartz1 / SplunkForPCAP
The PCAP Analyzer for Splunk includes useful Dashboards to analyze network packet capture files from Wireshark or Network Monitor (.pcap) and network streaming data (Splunk App for Stream). The App includes Dashboards which will show you: - The Top Talker IP's, Protocols, VLANs, Conversations - Detailed overview about IP Conversations, Packet L…
☆41Updated 9 months ago
Related projects ⓘ
Alternatives and complementary repositories for SplunkForPCAP
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- Bro script package to create JSON formatted logs to stream into data analysis systems.☆28Updated 11 months ago
- Sysmon Splunk App☆46Updated 6 years ago
- Security Onion Elastic Stack☆46Updated 3 years ago
- The Bro/Zeek language cheat sheet☆50Updated 11 years ago
- Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.☆69Updated 11 months ago
- MineMeld nodes for MISP☆18Updated 9 months ago
- WebUI of MineMeld☆43Updated last year
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 3 years ago
- Splunk App to assist Sysmon Threat Hunting☆38Updated 7 years ago
- Zeek support for Community ID flow hashing.☆34Updated last year
- Build Automated Machine Images for MISP☆28Updated last year
- Potiron - Normalize, Index and Visualize Network Capture☆83Updated 5 years ago
- A RESTful API frontend for Stenographer☆55Updated last year
- ☆12Updated 5 years ago
- Top DNS Measurement for Bro☆11Updated 4 years ago
- ☆33Updated 3 years ago
- ☆24Updated 4 years ago
- A website and framework for testing NIDS detection☆56Updated 3 years ago
- ☆38Updated 6 years ago
- Dashboards and loader for ROCK NSM dashboards☆47Updated last year
- ☆23Updated 4 years ago
- ☆20Updated 4 years ago
- Plugin for Zeek/Bro which provides http2 decoder/analyzer☆30Updated 4 months ago
- Actionable analytics designed to combat threats based on MITRE's ATT&CK.☆22Updated 5 years ago
- Deploy MISP Project software with Vagrant.☆42Updated 4 years ago
- Expert Investigation Guides☆50Updated 3 years ago
- Python script to automatically create sigma rules from The hive observables☆23Updated 5 years ago
- Download a list of suspected malicious IPs and Domains. Create a QRadar Reference Set. Search Your Environment For Malicious IPs☆67Updated 3 years ago
- Kibana 6 Templates for Suricata IDPS Threat Hunting☆25Updated 5 years ago