aholzel / SA-dmarc
Splunk app for visualization of DMARC RUA mails
☆14Updated 6 months ago
Related projects ⓘ
Alternatives and complementary repositories for SA-dmarc
- Add-on for ingesting DMARC aggregate reports into Splunk☆15Updated last year
- A python script to shift the timestamp on syslog data. Useful for forensicators combating time skew.☆19Updated 2 years ago
- Integrating Sysinternals Autoruns’ logs into Security Onion☆31Updated 9 months ago
- InvestigationPlaybookSpec☆72Updated 7 years ago
- WebUI of MineMeld☆43Updated last year
- MineMeld nodes for MISP☆18Updated 9 months ago
- Sysmon Splunk App☆46Updated 6 years ago
- ☆48Updated 4 years ago
- ☆55Updated 2 years ago
- ☆34Updated 3 years ago
- A website and framework for testing NIDS detection☆56Updated 3 years ago
- Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.☆69Updated last year
- Analyze binaries collected in VMware Carbon Black EDR against Yara rules.☆36Updated last year
- Simple block lists hub for PAN-OS DBL feature☆35Updated 5 years ago
- automate your MISP installs☆66Updated 4 years ago
- This package allows for creating alerts in The Hive from emails retrieved from a Microsoft Exchange mailbox.☆12Updated 7 years ago
- SightingDB is a database for Sightings☆21Updated last year
- Splunk App to assist Sysmon Threat Hunting☆38Updated 7 years ago
- ☆27Updated 6 years ago
- setup zeek, previously Bro IDS☆17Updated 3 weeks ago
- Carbon Black Feeds☆70Updated last year
- Recon Hunt Queries☆75Updated 3 years ago
- This repository is created to add value to existing Network Security Monitoring solutions.☆42Updated 8 years ago
- Actionable analytics designed to combat threats based on MITRE's ATT&CK.☆22Updated 5 years ago
- Push "BAD" IPs/Networks into QRadar's "Remote Networks", tag them properly, and use them!☆18Updated 11 years ago
- ☆12Updated 5 years ago