aholzel / SA-dmarc

Related projects ⓘ

Alternatives and complementary repositories for SA-dmarc

• jorritfolmer / TA-dmarc
  Add-on for ingesting DMARC aggregate reports into Splunk
  ☆15Updated last year
• rkovar / splunk-hunting-helpers
  ☆55Updated 2 years ago
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated last year
• defensivedepth / Pertinax
  Integrating Sysinternals Autoruns’ logs into Security Onion
  ☆31Updated 8 months ago
• philhagen / timeshift
  A python script to shift the timestamp on syslog data. Useful for forensicators combating time skew.
  ☆19Updated 2 years ago
• cocaman / urlhaus
  ☆27Updated 6 years ago
• weslambert / securityonion-misp
  ☆34Updated 3 years ago
• CIRCL / pystemon
  Monitoring tool for PasteBin-alike sites written in Python. Inspired by pastemon http://github.com/xme/pastemon
  ☆43Updated 3 years ago
• BechtelCIRT / beholder
  Beholder is a shell script which installs and configures essentials to peer into your network activity.
  ☆19Updated 7 years ago
• sans-blue-team / NSM
  This repository is created to add value to existing Network Security Monitoring solutions.
  ☆42Updated 8 years ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated 11 months ago
• UNIT777 / Email2TheHive
  This package allows for creating alerts in The Hive from emails retrieved from a Microsoft Exchange mailbox.
  ☆12Updated 7 years ago
• georgestarcher / Splunk-ESIntel-KVStore
  Splunk csv to KVStore ES Threat Intel
  ☆10Updated 8 years ago
• gcrahay / otx_misp
  Imports Alienvault OTX pulses to a MISP instance
  ☆52Updated 3 years ago
• hosom / bro-otx
  Integrate Zeek with Alienvault OTX
  ☆24Updated 4 years ago
• SMAPPER / NSM
  This repository is created to add value to existing Network Security Monitoring solutions.
  ☆16Updated 8 years ago
• carbonblack / cbfeeds
  Carbon Black Feeds
  ☆70Updated last year
• brad-anton / brand_watch
  Use OpenDNS's investigate API to find newly observed domains which match a brand or string
  ☆17Updated 8 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆37Updated last month
• harvard-itsecurity / qradar-seculert-push
  Push "BAD" IPs/Networks into QRadar's "Remote Networks", tag them properly, and use them!
  ☆17Updated 11 years ago
• ryanplasma / awesome-splunk-phantom
  A collection of awesome resources built for and around the Splunk Phantom platform.
  ☆14Updated 4 years ago
• eCrimeLabs / MISP2CbR
  Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.
  ☆19Updated 2 years ago
• sroberts / jager
  Hunting IOCs all day every day...
  ☆82Updated last year
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆34Updated last year
• MHaggis / app_splunk_sysmon_hunter
  Splunk App to assist Sysmon Threat Hunting
  ☆38Updated 7 years ago