MHaggis/sysmon-splunk-app external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

MHaggis/sysmon-splunk-app

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/MHaggis/sysmon-splunk-app)

Close

MHaggis / sysmon-splunk-appView on GitHubMore

• External links
• Readme badge

Sysmon Splunk App

☆47Aug 21, 2018Updated 7 years ago

Alternatives and similar repositories for sysmon-splunk-app

Users that are interested in sysmon-splunk-app are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• MHaggis / hunt-detect-prevent

  View on GitHub
  Lists of sources and utilities utilized to hunt, detect and prevent evildoers.
  ☆169Dec 10, 2018Updated 7 years ago
• kidcrash22 / Sysmon-Threat-Intel

  View on GitHub
  ☆13Feb 6, 2018Updated 8 years ago
• MHaggis / app_splunk_sysmon_hunter

  View on GitHub
  Splunk App to assist Sysmon Threat Hunting
  ☆38Mar 7, 2017Updated 9 years ago
• MHaggis / sysmon-dfir

  View on GitHub
  Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.
  ☆939Dec 12, 2023Updated 2 years ago
• MHaggis / bookish-happiness

  View on GitHub
  OG Atomic Red Team
  ☆30Jun 12, 2018Updated 7 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• hire-vladimir / SA-syslog_collection

  View on GitHub
  Monitor syslog collection infrastructure & offer syslog configuration templates.
  ☆27Feb 9, 2018Updated 8 years ago
• rkovar / splunk-hunting-helpers

  View on GitHub
  ☆55Mar 2, 2022Updated 4 years ago
• Kathayra / HT-Trackr

  View on GitHub
  How can you track the hunting techniques you come up with?
  ☆13Sep 3, 2017Updated 8 years ago
• atc-project / atc-mitigation

  View on GitHub
  Actionable analytics designed to combat threats based on MITRE's ATT&CK.
  ☆23Aug 21, 2019Updated 6 years ago
• olafhartong / TA-Sysmon-deploy

  View on GitHub
  Deploy and maintain Symon through the Splunk Deployment Sever
  ☆32Jul 30, 2020Updated 5 years ago
• splunk / rba

  View on GitHub
  RBA is Splunk's method to aggregate low-fidelity security events as interesting observations tagged with security metadata to create high…
  ☆65Apr 10, 2026Updated 3 weeks ago
• alanwill / ansible-splunk

  View on GitHub
  Ansible playbook for installing Splunk 6 on an AWS infrastruture
  ☆20Aug 27, 2015Updated 10 years ago
• swisscom / splunk-addon-powershell

  View on GitHub
  Splunk Add-on for PowerShell provides field extraction for PowerShell event logs.
  ☆17Feb 1, 2021Updated 5 years ago
• pidydx / PyIOCe

  View on GitHub
  Python OpenIOC Editor
  ☆18Dec 28, 2015Updated 10 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• georgestarcher / Splunk-ESIntel-KVStore

  View on GitHub
  Splunk csv to KVStore ES Threat Intel
  ☆11Jul 11, 2016Updated 9 years ago
• mutedmouse / ta-volatility

  View on GitHub
  Technical add-on to ingest json formatted volatility memory analysis plugin outputs
  ☆13May 21, 2018Updated 7 years ago
• swimlane / PSAttck

  View on GitHub
  PSAttck is a light-weight framework for the MITRE ATT&CK Framework.
  ☆38Jan 11, 2022Updated 4 years ago
• swimlane / PSCVSS

  View on GitHub
  A Windows PowerShell & PowerShell Core Module to calculate a CVSS3 Score based on a Vector string
  ☆12Dec 20, 2022Updated 3 years ago
• f8al / TA-Shell

  View on GitHub
  Splunk scripted input for opening a backconnect shell on a remote forwarder
  ☆45Nov 18, 2020Updated 5 years ago
• cookpad / aws-falcon-data-forwarder

  View on GitHub
  CrowdStrike Falcon log forwarder from falcon S3 bucket to your S3 bucket
  ☆11Apr 15, 2021Updated 5 years ago
• hire-vladimir / SA-cim_vladiator

  View on GitHub
  Data validator agains Splunk Common Information Model (CIM)
  ☆78Mar 27, 2024Updated 2 years ago
• olafhartong / SA-Threat-Hunting

  View on GitHub
  Splunk app for Threat hunting
  ☆15Nov 15, 2018Updated 7 years ago
• hvandenb / splunk-elasticsearch

  View on GitHub
  A search command for Splunk which will allow you to search Elastic Search and display the results in the Splunk GUI
  ☆70Aug 10, 2025Updated 8 months ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• thechrisharrod / Bloodhound

  View on GitHub
  Find permanent WMI event consumers on endpoints that could be used by APT actors.
  ☆17Jun 15, 2016Updated 9 years ago
• splunk / TA-osquery

  View on GitHub
  A Splunk technology add-on for osquery
  ☆14Sep 5, 2025Updated 8 months ago
• Kintyre / TA-postfix

  View on GitHub
  Postfix Add-on for Splunk (Compliant with the Mail CIM model)
  ☆11Mar 18, 2021Updated 5 years ago
• swimlane / deepdive-domain-data

  View on GitHub
  This repository contains data related to coronavirus & COVID-19 based domains identified by Swimlane's DeepDive research team
  ☆11Jul 6, 2020Updated 5 years ago
• swimlane / cy-mockapi

  View on GitHub
  Easily mock your REST API in Cypress using fixtures
  ☆17Feb 19, 2025Updated last year
• aplura / Tango

  View on GitHub
  Honeypot Intelligence with Splunk
  ☆255Oct 18, 2018Updated 7 years ago
• honeydbio / honeydb-python

  View on GitHub
  HoneyDB Python Module
  ☆14Feb 6, 2024Updated 2 years ago
• 0sm0s1z / Invoke-SelfSignedWebRequest

  View on GitHub
  This repo exists as a quick and dirty arsenal of methods and scripts to subvert .NET SSL/TLS certificate validation in PowerShell and pre…
  ☆12Jan 28, 2017Updated 9 years ago
• MHaggis / CBR-Queries

  View on GitHub
  Collection of useful, up to date, Carbon Black Response Queries
  ☆85Oct 23, 2020Updated 5 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• mattifestation / PSSysmonTools

  View on GitHub
  Sysmon Tools for PowerShell
  ☆233Aug 17, 2018Updated 7 years ago
• travisfoley / dfirtriage

  View on GitHub
  Digital forensic acquisition tool for Windows based incident response.
  ☆348May 7, 2024Updated last year
• rkovar / dns_detection

  View on GitHub
  Detecting DNS Spoofing, DNS Tunneling, DNS Exfiltration
  ☆36Sep 28, 2015Updated 10 years ago
• swimlane / python-office365

  View on GitHub
  💼 Office 365 REST API wrapper. Strongly typed.
  ☆19Nov 4, 2019Updated 6 years ago
• forensicmatt / RustyLnk

  View on GitHub
  LNK to JSON
  ☆14Mar 7, 2019Updated 7 years ago
• zshehri / CTU

  View on GitHub
  CyberArk Terminal Utility, PowerShell tool that uses REST API to allow terminal access to CyberArk PVWA
  ☆16Oct 16, 2017Updated 8 years ago
• vulp1n3 / Aggressor_Scripts

  View on GitHub
  Scripts for automating actions in Cobalt Strike
  ☆11Jul 1, 2016Updated 9 years ago