PaloAltoNetworks / minemeld-ansible

Ansible playbook for installing MineMeld on Linux

☆48

Alternatives and similar repositories for minemeld-ansible:

Users that are interested in minemeld-ansible are comparing it to the libraries listed below

PaloAltoNetworks / minemeld-webui
WebUI of MineMeld
☆43Updated 2 years ago
PaloAltoNetworks / minemeld-misp
MineMeld nodes for MISP
☆19Updated last year
PaloAltoNetworks / minemeld-core
Engine of MineMeld
☆141Updated 2 years ago
shadow-box / Palo-Alto-Networks-ELK-Stack
Configuration for a Palo Alto Networks fed ELK Stack with Visualizations
☆74Updated 5 years ago
PaloAltoNetworks / Splunk-Apps
Palo Alto Networks App for Splunk leverages the data visibility provided by Palo Alto Networks next-generation firewalls and endpoint sec…
☆106Updated 5 months ago
MattUebel / splunk_UF_hardening
scripts to configure the Splunk Universal Forwarder in a locked down state
☆40Updated 6 years ago
PaloAltoNetworks / SafeNetworking
Read only mirror. To contribute or submit issues, please go to the website link --->
☆13Updated last year
PaloAltoNetworks / minemeld-node-prototypes
Prototypes for MineMeld nodes
☆39Updated 3 years ago
CiscoSecurity / fp-05-firepower-cef-connector-arcsight
Cisco eStreamer client
☆24Updated 2 years ago
SMAPPER / NXLog-AutoConfig
☆48Updated 4 years ago
rkovar / splunk-hunting-helpers
☆54Updated 3 years ago
0xtf / testmynids.org
A website and framework for testing NIDS detection
☆57Updated 3 years ago
MHaggis / sysmon-splunk-app
Sysmon Splunk App
☆46Updated 6 years ago
HASecuritySolutions / elastic_stack
☆34Updated 3 years ago
PaloAltoNetworks / minemeld-docker
Official Palo Alto Networks MineMeld docker
☆17Updated 5 years ago
olafhartong / parsoalto
Palo Alto Networks Rule Parser
☆16Updated 8 years ago
PaloAltoNetworks / Skillets
Skillets is the default holding place for useful Panhandler skillets. These are usually smaller one-off bits that may not require their o…
☆11Updated 4 years ago
sans-blue-team / sec530-wiki
☆54Updated 3 years ago
sans-blue-team / NSM
This repository is created to add value to existing Network Security Monitoring solutions.
☆42Updated 8 years ago
socprime / soc_workflow_app_ce
SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…
☆94Updated 2 years ago
NdS-Research-Facilities / QRadar-ruleset
QRadar Export the rule set for printing
☆22Updated 7 years ago
HKcyberstark / TI_Mod
Threat Intelligence with Elastic - Minemeld integration with Elasticsearch
☆19Updated 3 years ago
PaloAltoNetworks / Splunk_TA_paloalto
The Palo Alto Networks Add-on for Splunk allows a Splunk® Enterprise or Splunk Cloud administrator to collect data from Palo Alto Network…
☆21Updated 4 years ago
counteractive / o365beat
Elastic Beat for fetching and shipping Office 365 audit events
☆66Updated 4 years ago
phantomcyber / phantom-community-projects
This repo represents work the Phantom Community collaborates on to build apps and learn.
☆12Updated 3 years ago
stealthllama / pandb-query
A tool for bulk URL queries against Palo Alto Networks' PAN-DB cloud database
☆18Updated last year
dstaulcu / TA-Sigma-Searches
A Splunk app with saved reports derived from Sigma rules
☆73Updated 6 years ago
capesstack / capes
Cyber Analytics Platform and Examination System (CAPES) Project Page
☆60Updated 5 years ago
olafhartong / TA-Sysmon-deploy
Deploy and maintain Symon through the Splunk Deployment Sever
☆31Updated 4 years ago
rocknsm / rock-dashboards
Dashboards and loader for ROCK NSM dashboards
☆48Updated 2 years ago