Krook9d / TA-Purplelab-SplunkLinks
Splunk add-on related to the PurpleLab tool
☆41Updated last year
Alternatives and similar repositories for TA-Purplelab-Splunk
Users that are interested in TA-Purplelab-Splunk are comparing it to the libraries listed below
Sorting:
- Generate MITRE ATT&CK and D3FEND from a list of CVEs. Database with CVE, CWE, CAPEC, MITRE ATT&CK and D3FEND Techniques data is updated d…☆267Updated this week
- SOAR Automation with Shuffle, Wazuh & TheHive | This project integrates Shuffle SOAR, Wazuh SIEM, and TheHive to automate security incide…☆120Updated 11 months ago
- ☆220Updated last year
- ☆120Updated 8 months ago
- Have you ever wanted to search a link or IP address on multiple OSINT pages at once?☆59Updated 7 months ago
- DECeption with Evaluative Integrated Validation Engine (DECEIVE): Let an LLM do all the hard honeypot work!☆274Updated 8 months ago
- ☆60Updated 7 months ago
- ThreatSeeker: Threat Hunting via Windows Event Logs☆124Updated 2 years ago
- ☆193Updated last year
- Security automation with n8n ideas: 100+ Red/Blue/AppSec workflows, integrations, and ready-to-run playbooks.☆474Updated 4 months ago
- CyberSecurity BLUE TEAM containerized platform that brings together open-source tools for SIEM, DFIR, CTI, SOAR, and Network Analysis☆456Updated 3 months ago
- Repo to hold wazuh manager mcp server☆74Updated 4 months ago
- AI-powered cybersecurity attack flow visualization tool using MITRE ATT&CK☆197Updated 2 months ago
- SIEM Cheat Sheet☆80Updated 2 years ago
- ☆35Updated last year
- Research repository tracking affected IPs from the Fortigate CVE-2022-40684 configuration leak by Belsen Group☆86Updated last year
- Mapping of open-source detection rules and atomic tests.☆195Updated this week
- Knowledge base on cybercriminal concealment techniques☆95Updated last week
- Automation tool for Windows Deception Host Burn-In☆86Updated last year
- Welcome to Project KillChain, a comprehensive GitHub repository for Red and Blue Teams. This repository houses tools, scripts, technique…☆113Updated last year
- The Enhanced MITRE ATT&CK® Coverage Tracker is an Excel tool for SOCs to measure and improve detection coverage of cyber threats. It simp…☆34Updated 3 months ago
- A comprehensive PowerShell-based threat hunting and incident response framework for Windows environments, built around Sysmon event analy…☆44Updated 6 months ago
- This project is a Terraform-based implementation for deploying a Security Operations Center (SOC) using Kali Linux in AWS. It provides an…☆117Updated last year
- ☆41Updated 2 years ago
- Cybether - A modern, open-source Cybersecurity Governance, Risk, and Compliance (GRC) dashboard☆86Updated last month
- A comprehensive Windows security auditing and threat detection toolkit. Features 58 production-ready PowerShell functions organized into …☆75Updated 3 months ago
- Sniffing out well-known threat groups☆64Updated last year
- BusPwn V1.0 is a powerful Modbus hacking framework designed for testing and exploiting vulnerabilities in Modbus-based systems commonly f…☆26Updated 9 months ago
- Scripts for importing threat feeds and CTI articles, blogs, and reports into MISP.☆18Updated 7 months ago
- Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service☆32Updated last year