Truvis / Splunk_TA_Truvis_Suricata5

Related projects ⓘ

Alternatives and complementary repositories for Splunk_TA_Truvis_Suricata5

• Truvis / SplunkDashboards
  Collection of Dashboards for Threat Hunting and more!
  ☆59Updated 4 years ago
• dstaulcu / SplunkTools
  A collection of scripts useful in management of Splunk deployment
  ☆20Updated 3 months ago
• CERT-Bund / IRNetTools
  Incident Response Network Tools
  ☆23Updated 3 years ago
• HKcyberstark / TI_Mod
  Threat Intelligence with Elastic - Minemeld integration with Elasticsearch
  ☆19Updated 3 years ago
• karthikkbala / MISP-QRadar-Integration
  The Project can be used to integrate QRadar with MISP Threat Sharing Platform
  ☆39Updated 2 years ago
• rba-community / TA-opnsense
  Splunk Add on for OPNsense firewall
  ☆1Updated last month
• olafhartong / sysmon-modular-linux
  A repository of Sysmon For Linux configuration modules
  ☆15Updated 3 years ago
• splunk / TA-misp_es
  MISP to Splunk Enterprise Security Theat Intelligence Framework Integration
  ☆12Updated last year
• correlatedsecurity / SPEED-SIEM-Use-Case-Framework
  Repository for SPEED SIEM Use Case Framework
  ☆52Updated 4 years ago
• corelight / Dashboards-Splunk-DNS-Hunting-Beaconing
  DNS Dashboard for hunting and identifying beaconing
  ☆14Updated 4 years ago
• ryanadler / downloadSplunk
  Downloading Splunk, made easy through scripts
  ☆16Updated last month
• aacgood / Cortex-Analyzers
  A collection of Cortex Analyzers and Responders for TheHive/Cortex
  ☆13Updated 4 years ago
• guardsight / gsvsoc_mission-model
  Incident Response Report Using GitHub-Sphinx
  ☆19Updated 5 years ago
• DaRuudii / qradar-utils
  This repository bundles various utilities and scripts I built for use with IBM QRadar SIEM
  ☆16Updated last week
• phantomcyber / phantom-community-projects
  This repo represents work the Phantom Community collaborates on to build apps and learn.
  ☆12Updated 3 years ago
• defensivedepth / osquery-filters
  ☆34Updated last year
• high101bro / PoSh-EasyWin
  PowerShell - Endpoint Analysis Solution Your Windows Intranet Needs
  ☆46Updated 10 months ago
• getkub / SplunkScriplets
  Various Splunk Scripts and applets, all in one place
  ☆32Updated this week
• HASecuritySolutions / Update-VMs
  Snapshot, patch, health-check, and potentially roll-back Windows VMs
  ☆34Updated 6 years ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆53Updated 3 years ago
• ReconInfoSec / graylog2thehive
  Create alerts in The Hive from your Graylog alerts, to be turned into Hive cases.
  ☆44Updated 4 years ago
• NorthfieldCreative / splunk-crowdstrike-event-queries
  ☆13Updated 2 years ago
• activecm / docker-zeek
  Run zeek with zeekctl in docker
  ☆50Updated 2 months ago
• corelight / raspi-corelight
  Corelight@Home script
  ☆40Updated last year
• Loginsoft-LLC / threat-detection-rules
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆50Updated 2 years ago
• Truvis / Suricata_Threat-Hunting-Rules
  Collection of Suricata rule sets that I use modified to my environments.
  ☆39Updated 4 years ago
• corelight / threat-hunting-guide
  ☆46Updated 2 years ago
• jokezone / Update-Sysmon
  This repository was created to aid in the deployment/maintenance of the Sysmon service on a large number of computers.
  ☆82Updated last year
• eCrimeLabs / MISP2CbR
  Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.
  ☆19Updated 2 years ago