DanielSchwartz1 / SplunkForPCAPLinks
The PCAP Analyzer for Splunk includes useful Dashboards to analyze network packet capture files from Wireshark or Network Monitor (.pcap) and network streaming data (Splunk App for Stream). The App includes Dashboards which will show you: - The Top Talker IP's, Protocols, VLANs, Conversations - Detailed overview about IP Conversations, Packet L…
☆43Updated last year
Alternatives and similar repositories for SplunkForPCAP
Users that are interested in SplunkForPCAP are comparing it to the libraries listed below
Sorting:
- Security Onion Elastic Stack☆46Updated 4 years ago
- Sysmon Splunk App☆47Updated 6 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- Integrating Sysinternals Autoruns’ logs into Security Onion☆31Updated last year
- Splunk App to assist Sysmon Threat Hunting☆38Updated 8 years ago
- Build Automated Machine Images for MISP☆28Updated last year
- Presentation Slides and Video links☆32Updated 3 years ago
- A website and framework for testing NIDS detection☆57Updated 3 years ago
- ☆49Updated 4 years ago
- ☆34Updated 3 years ago
- ☆20Updated 5 years ago
- Build your own threat hunting maturity model☆11Updated 7 years ago
- ☆24Updated 5 years ago
- Powershell collection designed to assist in Threat Hunting Windows systems.☆27Updated 7 years ago
- A few scripts I put together for testing purposes and to automate a few capabilities while doing IR. These scripts are also part of my bl…☆54Updated 7 years ago
- This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.☆22Updated 7 years ago
- Expert Investigation Guides☆51Updated 4 years ago
- The Bro/Zeek language cheat sheet☆52Updated 12 years ago
- Exports MISP events to STIX and ingest into McAfee ESM☆15Updated 5 years ago
- MineMeld nodes for MISP☆19Updated last year
- Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.☆69Updated last year
- Primary data pipelines for intrusion detection, security analytics and threat hunting☆87Updated 3 years ago
- ☆55Updated 3 years ago
- Files from my Storm Center Articles☆17Updated last year
- WebUI of MineMeld☆43Updated 2 years ago
- Imports Alienvault OTX pulses to a MISP instance☆52Updated 3 years ago
- Bro scripts for the ROCK platform. http://rocknsm.io☆33Updated last year
- Bro script package to create JSON formatted logs to stream into data analysis systems.☆28Updated last year
- Threat Alert Logic Repository☆92Updated 6 years ago
- Threat Hunting with ELK Workshop (InfoSecWorld 2017)☆66Updated 7 years ago