Alternatives and similar repositories for Splunk_TA_Truvis_Suricata5

Users that are interested in Splunk_TA_Truvis_Suricata5 are comparing it to the libraries listed below

• corelight / raspi-corelight
  Corelight@Home script
  ☆44Updated last year
• Alir3z4 / ansible-suricata
  An Ansible playbook for deploying the Suricata intrusion detection system and fetching Snort rules with Oinkmaster.
  ☆16Updated 3 years ago
• CERT-Bund / IRNetTools
  Incident Response Network Tools
  ☆24Updated 4 years ago
• ryanadler / downloadSplunk
  Downloading Splunk, made easy through scripts
  ☆24Updated last month
• PaloAltoNetworks / minemeld-misp
  MineMeld nodes for MISP
  ☆19Updated last year
• aacgood / Cortex-Analyzers
  A collection of Cortex Analyzers and Responders for TheHive/Cortex
  ☆13Updated 5 years ago
• corelight / Corelight-Ansible-Roles
  Corelight-Ansible-Roles are a collection of Ansible Roles and playbooks that install, configure, run and manage a variety of Corelight, S…
  ☆16Updated 4 years ago
• Truvis / SplunkDashboards
  Collection of Dashboards for Threat Hunting and more!
  ☆69Updated 4 years ago
• karthikkbala / MISP-QRadar-Integration
  The Project can be used to integrate QRadar with MISP Threat Sharing Platform
  ☆40Updated 3 years ago
• Shuffle / workflows
  Workflows for Shuffle
  ☆23Updated 2 years ago
• HKcyberstark / TI_Mod
  Threat Intelligence with Elastic - Minemeld integration with Elasticsearch
  ☆19Updated 4 years ago
• defensivedepth / osquery-filters
  ☆34Updated 2 years ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 9 months ago
• SanWieb / sigWah
  A Sigma to Wazuh / OSSEC converter including a generated Windows Sysmon ruleset
  ☆34Updated 5 years ago
• DaRuudii / qradar-utils
  This repository bundles various utilities and scripts I built for use with IBM QRadar SIEM
  ☆16Updated 2 months ago
• hosom / bro-otx
  Integrate Zeek with Alienvault OTX
  ☆25Updated 5 years ago
• PaloAltoNetworks / minemeld-ansible
  Ansible playbook for installing MineMeld on Linux
  ☆48Updated 4 years ago
• OTRF / infosec-jupyterthon
  A community event for security researchers to share their favorite notebooks
  ☆108Updated last year
• TheHive-Project / Synapse
  Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform
  ☆71Updated 2 years ago
• 0xThiebaut / sigmai
  Import specific data sources into the Sigma generic and open signature format.
  ☆78Updated 3 years ago
• socprime / soc_workflow_app_ce
  SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…
  ☆94Updated 3 years ago
• LetMeR00t / TA-thehive-cortex
  Technical add-on for Splunk related to TheHive/Cortex from TheHive project
  ☆53Updated this week
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆54Updated last week
• austinsonger / Elastic-Security
  Repo for Automations and other solutions for Elastic SIEM/Security.
  ☆18Updated 4 years ago
• corelight / threat-hunting-guide
  ☆53Updated 3 years ago
• HASecuritySolutions / elastic_stack
  ☆34Updated 4 years ago
• ajackal / ir_scripts
  incident response scripts
  ☆19Updated 6 years ago
• humio / security_monitoring
  ☆42Updated 2 years ago
• counteractive / o365beat
  Elastic Beat for fetching and shipping Office 365 audit events
  ☆68Updated 5 years ago
• rndmIdi0cy / Menagerie
  Crowdstrike response script containing various functions for IR/triage
  ☆12Updated 4 years ago