Sysmon Splunk App
☆47Aug 21, 2018Updated 7 years ago
Alternatives and similar repositories for sysmon-splunk-app
Users that are interested in sysmon-splunk-app are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Lists of sources and utilities utilized to hunt, detect and prevent evildoers.☆169Dec 10, 2018Updated 7 years ago
- ☆13Feb 6, 2018Updated 8 years ago
- Splunk App to assist Sysmon Threat Hunting☆38Mar 7, 2017Updated 9 years ago
- Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.☆940Dec 12, 2023Updated 2 years ago
- OG Atomic Red Team☆30Jun 12, 2018Updated 7 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Monitor syslog collection infrastructure & offer syslog configuration templates.☆27Feb 9, 2018Updated 8 years ago
- ☆55Mar 2, 2022Updated 4 years ago
- How can you track the hunting techniques you come up with?☆13Sep 3, 2017Updated 8 years ago
- Actionable analytics designed to combat threats based on MITRE's ATT&CK.☆23Aug 21, 2019Updated 6 years ago
- RBA is Splunk's method to aggregate low-fidelity security events as interesting observations tagged with security metadata to create high…☆63Updated this week
- Ansible playbook for installing Splunk 6 on an AWS infrastruture☆20Aug 27, 2015Updated 10 years ago
- Splunk Add-on for PowerShell provides field extraction for PowerShell event logs.☆17Feb 1, 2021Updated 5 years ago
- Python OpenIOC Editor☆18Dec 28, 2015Updated 10 years ago
- Splunk csv to KVStore ES Threat Intel☆11Jul 11, 2016Updated 9 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Technical add-on to ingest json formatted volatility memory analysis plugin outputs☆13May 21, 2018Updated 7 years ago
- PSAttck is a light-weight framework for the MITRE ATT&CK Framework.☆38Jan 11, 2022Updated 4 years ago
- A Windows PowerShell & PowerShell Core Module to calculate a CVSS3 Score based on a Vector string☆12Dec 20, 2022Updated 3 years ago
- Splunk scripted input for opening a backconnect shell on a remote forwarder☆45Nov 18, 2020Updated 5 years ago
- CrowdStrike Falcon log forwarder from falcon S3 bucket to your S3 bucket☆11Apr 15, 2021Updated 5 years ago
- Data validator agains Splunk Common Information Model (CIM)☆78Mar 27, 2024Updated 2 years ago
- Splunk app for Threat hunting☆15Nov 15, 2018Updated 7 years ago
- Find permanent WMI event consumers on endpoints that could be used by APT actors.☆17Jun 15, 2016Updated 9 years ago
- A Splunk technology add-on for osquery☆14Sep 5, 2025Updated 7 months ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Postfix Add-on for Splunk (Compliant with the Mail CIM model)☆11Mar 18, 2021Updated 5 years ago
- Easily mock your REST API in Cypress using fixtures☆17Feb 19, 2025Updated last year
- Honeypot Intelligence with Splunk☆255Oct 18, 2018Updated 7 years ago
- Crack your macros like the math pros.☆33Feb 14, 2017Updated 9 years ago
- HoneyDB Python Module☆14Feb 6, 2024Updated 2 years ago
- This repo exists as a quick and dirty arsenal of methods and scripts to subvert .NET SSL/TLS certificate validation in PowerShell and pre…☆12Jan 28, 2017Updated 9 years ago
- Collection of useful, up to date, Carbon Black Response Queries☆85Oct 23, 2020Updated 5 years ago
- Sysmon Tools for PowerShell☆233Aug 17, 2018Updated 7 years ago
- Digital forensic acquisition tool for Windows based incident response.☆346May 7, 2024Updated last year
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Detecting DNS Spoofing, DNS Tunneling, DNS Exfiltration☆36Sep 28, 2015Updated 10 years ago
- LNK to JSON☆14Mar 7, 2019Updated 7 years ago
- CyberArk Terminal Utility, PowerShell tool that uses REST API to allow terminal access to CyberArk PVWA☆16Oct 16, 2017Updated 8 years ago
- Scripts for automating actions in Cobalt Strike☆11Jul 1, 2016Updated 9 years ago
- ☆10Sep 20, 2015Updated 10 years ago
- Parser for Windows Scheduled Task files.☆13Apr 26, 2023Updated 2 years ago
- PowerShell module for creating and managing Sysinternals Sysmon config files.☆215Mar 29, 2021Updated 5 years ago