aholzel / SA-dmarc
Splunk app for visualization of DMARC RUA mails
☆14Updated 6 months ago
Related projects ⓘ
Alternatives and complementary repositories for SA-dmarc
- Add-on for ingesting DMARC aggregate reports into Splunk☆15Updated last year
- ☆55Updated 2 years ago
- WebUI of MineMeld☆43Updated last year
- Integrating Sysinternals Autoruns’ logs into Security Onion☆31Updated 8 months ago
- A python script to shift the timestamp on syslog data. Useful for forensicators combating time skew.☆19Updated 2 years ago
- ☆27Updated 6 years ago
- ☆34Updated 3 years ago
- Monitoring tool for PasteBin-alike sites written in Python. Inspired by pastemon http://github.com/xme/pastemon☆43Updated 3 years ago
- Beholder is a shell script which installs and configures essentials to peer into your network activity.☆19Updated 7 years ago
- This repository is created to add value to existing Network Security Monitoring solutions.☆42Updated 8 years ago
- Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.☆69Updated 11 months ago
- This package allows for creating alerts in The Hive from emails retrieved from a Microsoft Exchange mailbox.☆12Updated 7 years ago
- Splunk csv to KVStore ES Threat Intel☆10Updated 8 years ago
- Imports Alienvault OTX pulses to a MISP instance☆52Updated 3 years ago
- Integrate Zeek with Alienvault OTX☆24Updated 4 years ago
- This repository is created to add value to existing Network Security Monitoring solutions.☆16Updated 8 years ago
- Carbon Black Feeds☆70Updated last year
- Use OpenDNS's investigate API to find newly observed domains which match a brand or string☆17Updated 8 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆37Updated last month
- Push "BAD" IPs/Networks into QRadar's "Remote Networks", tag them properly, and use them!☆17Updated 11 years ago
- A collection of awesome resources built for and around the Splunk Phantom platform.☆14Updated 4 years ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆19Updated 2 years ago
- Hunting IOCs all day every day...☆82Updated last year
- Zeek support for Community ID flow hashing.☆34Updated last year
- Splunk App to assist Sysmon Threat Hunting☆38Updated 7 years ago