Alternatives and similar repositories for .conf2015

Users that are interested in .conf2015 are comparing it to the libraries listed below

• harvard-itsecurity / qradar-seculert-push
  Push "BAD" IPs/Networks into QRadar's "Remote Networks", tag them properly, and use them!
  ☆18Updated 11 years ago
• georgestarcher / Splunk-Alert
  Example Splunk Alert Scripts
  ☆20Updated 10 years ago
• georgestarcher / Splunk-ESIntel-KVStore
  Splunk csv to KVStore ES Threat Intel
  ☆11Updated 8 years ago
• MISP / ansible
  MISP - Ansible installation script
  ☆22Updated 6 years ago
• mixmodeai / bro_intel_linter
  Bro Intel Feed Linter
  ☆26Updated 5 years ago
• rkovar / splunk-hunting-helpers
  ☆55Updated 3 years ago
• josehelps / Splunk-Mitigation-Framework
  Framework that sits on top of Splunk Enterprise Security to do auto-mitigation
  ☆14Updated 10 years ago
• hvandenb / splunk-elasticsearch
  A search command for Splunk which will allow you to search Elastic Search and display the results in the Splunk GUI
  ☆69Updated 8 years ago
• my2ndhead / TA-microsoft-windows
  ☆14Updated 8 years ago
• EmergingThreats / bro
  Bro things..
  ☆15Updated 9 years ago
• MattUebel / splunk_UF_hardening
  scripts to configure the Splunk Universal Forwarder in a locked down state
  ☆40Updated 6 years ago
• exp0se / harbinger
  Harbinger Threat Intelligence
  ☆82Updated 9 years ago
• juju4 / ansible-zeek
  setup zeek, previously Bro IDS
  ☆18Updated 2 months ago
• thnyheim / misp2bro
  Python script that gets IOC from MISP and converts it into BRO intel files.
  ☆13Updated 9 years ago
• hire-vladimir / SA-IdentityAssetExtraction
  Allows to pull asset and identity data into Splunk app for Enterprise Security from LDAP and other sources
  ☆27Updated 7 years ago
• TravisFSmith / MyBroElk
  Scripts for Bro IDS and ELK Stack
  ☆57Updated 9 years ago
• PingTrip / broctl-setcap
  Broctl plugin for automatically executing 'setcap' on each node after an install
  ☆13Updated 4 years ago
• carbonblack / cb-taxii-connector
  Connector for pulling and converting STIX information from TAXII Service Providers into CB Feeds.
  ☆15Updated 2 years ago
• outcoldman / awesome-splunk
  A curated list of awesome Splunk links
  ☆40Updated 9 years ago
• josehelps / pnexpose
  nexpose python client library
  ☆10Updated 5 years ago
• ciscocsirt / netsarlacc
  ☆38Updated 6 years ago
• sooshie / scrape_pdf
  Python script to pull various IOCs from PDFs
  ☆15Updated 10 years ago
• defensivedepth / Sysmon_OSSEC
  OSSEC Decoder & Rulesets for Sysmon Events
  ☆15Updated 9 years ago
• 0xxon / bro-scripts
  Assorted scripts for Bro
  ☆12Updated 9 years ago
• BechtelCIRT / beholder
  Beholder is a shell script which installs and configures essentials to peer into your network activity.
  ☆19Updated 8 years ago
• philhagen / timeshift
  A python script to shift the timestamp on syslog data. Useful for forensicators combating time skew.
  ☆21Updated 3 years ago
• joelwking / Phantom-Cyber
  Apps for Splunk Phantom security automation | Cisco Meraki | Ansible Tower | F5 | A10
  ☆24Updated 5 years ago
• CIRCL / bgpranking-redis-api
  API to access the Redis database of a BGP Ranking instance.
  ☆17Updated 7 years ago
• IBM / data-import
  ☆48Updated 9 years ago
• cudeso / host-enrich
  Enrich a host with open source security information
  ☆27Updated 9 years ago