apger/SA-RBA external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

apger/SA-RBA

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/apger/SA-RBA)

Close

apger / SA-RBAView on GitHubMore

• External links
• Readme badge

Risk Based Alerting Supporting Add-On (SA) for Splunk

☆44Oct 28, 2021Updated 4 years ago

Alternatives and similar repositories for SA-RBA

Users that are interested in SA-RBA are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• seynur / DA-ESS-MitreContent

  View on GitHub
  MITRE ATT&CK Framework compliance dashboard and correlation searches that works with Splunk Enterprise Security and ES Content Update
  ☆30May 14, 2026Updated last week
• splunk / rwi_executive_dashboard

  View on GitHub
  Splunk Remote Work Insights - Executive Dashboard
  ☆43Aug 20, 2020Updated 5 years ago
• hire-vladimir / SA-IdentityAssetExtraction

  View on GitHub
  Allows to pull asset and identity data into Splunk app for Enterprise Security from LDAP and other sources
  ☆28Feb 23, 2018Updated 8 years ago
• phantomcyber / phantom-apps

  View on GitHub
  Phantom Apps Repo
  ☆83Nov 9, 2021Updated 4 years ago
• amiracle / grand_central

  View on GitHub
  Grand Central logging for Cloud Services to Splunk
  ☆37Jan 22, 2022Updated 4 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• daveherrald / scansio-sonar-splunk

  View on GitHub
  Python scripts to download, parse, and enrich scans.io study data and load into Splunk for research, threat intelligence gathering, and s…
  ☆20May 12, 2026Updated last week
• rkovar / splunk-hunting-helpers

  View on GitHub
  ☆55Mar 2, 2022Updated 4 years ago
• splunk / splunk-aws-project-trumpet

  View on GitHub
  ☆98Jul 20, 2023Updated 2 years ago
• splunk / dashpub

  View on GitHub
  Generate next.js apps to publish Splunk dashboards
  ☆19May 16, 2024Updated 2 years ago
• hire-vladimir / SA-cim_vladiator

  View on GitHub
  Data validator agains Splunk Common Information Model (CIM)
  ☆78Mar 27, 2024Updated 2 years ago
• timfrazier1 / AdversarySimulation

  View on GitHub
  Compilation of resources to help with Adversary Simulation automation harness
  ☆100Aug 7, 2020Updated 5 years ago
• splunk / vscode-extension-splunk

  View on GitHub
  Visual Studio Code Extension for Splunk
  ☆96Jan 30, 2026Updated 3 months ago
• pauld-splunk / aws-s3-sqs-lambda

  View on GitHub
  ☆16Jun 10, 2020Updated 5 years ago
• JasonConger / SplunkConf18

  View on GitHub
  Splunk .conf18 - Dashboard Tips, Tricks and Hacks
  ☆23Oct 16, 2018Updated 7 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• dpaper-splunk / public

  View on GitHub
  ☆74Jul 3, 2024Updated last year
• splunk / quickstart-splunk-enterprise

  View on GitHub
  Splunk Enterprise on AWS - QuickStart
  ☆14Oct 9, 2022Updated 3 years ago
• splunk / splunk-connect-for-syslog

  View on GitHub
  Splunk Connect for Syslog
  ☆177May 14, 2026Updated last week
• steinitzu / humblebee

  View on GitHub
  TV show scraper/renamer thingy
  ☆12May 10, 2013Updated 13 years ago
• nicovdw / splunk_concurrency_helper

  View on GitHub
  Searches and dashboards to assist with optimising concurrency settings
  ☆31Mar 4, 2022Updated 4 years ago
• P4T12ICK / Sigma2SplunkAlert

  View on GitHub
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆117May 18, 2020Updated 6 years ago
• PacktPublishing / Splunk-7-Essentials-Third-Edition

  View on GitHub
  Splunk 7 Essentials - Third Edition, published by Packt
  ☆17Jan 18, 2023Updated 3 years ago
• anthonygtellez / splunk_deployment_automation

  View on GitHub
  ☆22Sep 16, 2025Updated 8 months ago
• splunk / azure-functions-splunk

  View on GitHub
  Azure Functions for getting data in to Splunk
  ☆33Apr 20, 2026Updated last month
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• jewnix / splunk-spec-files

  View on GitHub
  Splunk spec files version history
  ☆43May 4, 2026Updated 2 weeks ago
• nick-hills / splunkDeepfreeze

  View on GitHub
  Move frozen buckets to AWS S3 (and ultimately Glacier) for long term storage
  ☆13Sep 28, 2017Updated 8 years ago
• amiracle / homemonitor

  View on GitHub
  Splunk app for home | monitor >
  ☆25Jan 9, 2019Updated 7 years ago
• doksu / selinux_policy_for_splunk

  View on GitHub
  SELinux Policy for Splunk
  ☆58Aug 9, 2019Updated 6 years ago
• my2ndhead / TA-microsoft-windows

  View on GitHub
  ☆14Jul 8, 2016Updated 9 years ago
• bentleymi / ChatGPT-4-Splunk

  View on GitHub
  Splunk TA for sending completion requests to ChatGPT
  ☆27May 18, 2024Updated 2 years ago
• davisshannon / Splunk-Sunburst

  View on GitHub
  Sunburst IOCs for Splunk Ingest
  ☆18Jan 28, 2021Updated 5 years ago
• paychex / splunk-python

  View on GitHub
  Collection of useful python scripts to interact with Splunk's API.
  ☆15Dec 2, 2021Updated 4 years ago
• dfirtips / evids.dfir.tips

  View on GitHub
  ☆13Aug 17, 2020Updated 5 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• rephillips / dashboards

  View on GitHub
  ☆17Jul 31, 2024Updated last year
• dstaulcu / TA-Sigma-Searches

  View on GitHub
  A Splunk app with saved reports derived from Sigma rules
  ☆73Apr 24, 2018Updated 8 years ago
• silkyrich / cluster_health_tools

  View on GitHub
  ☆76Jul 15, 2021Updated 4 years ago
• harsmarvania57 / splunk-ko-change

  View on GitHub
  Bulk modify Splunk Knowledge Object's owners, permissions, apps, sharing and move them to another app
  ☆27Aug 27, 2022Updated 3 years ago
• neu5ron / domaininformation

  View on GitHub
  domain information in JSON format
  ☆10Jun 7, 2017Updated 8 years ago
• splunk / rba

  View on GitHub
  RBA is Splunk's method to aggregate low-fidelity security events as interesting observations tagged with security metadata to create high…
  ☆66Apr 10, 2026Updated last month
• MattUebel / splunk_UF_hardening

  View on GitHub
  scripts to configure the Splunk Universal Forwarder in a locked down state
  ☆40Dec 13, 2018Updated 7 years ago