cameling / logminer

Related projects ⓘ

Alternatives and complementary repositories for logminer

• salspaugh / splparser
  Simple parser for Splunk Processing Language (SPL) written in Python.
  ☆35Updated 6 years ago
• morrigan / user-behavior-anomaly-detector
  User anomaly detector based on logs generated by Osquery framework and machine learning to process those logs.
  ☆33Updated 7 years ago
• chenryn / ESPL
  Elastic Search Processing Language
  ☆49Updated 8 years ago
• Anonymity94 / spl2dsl
  Convert Splunk SPL to Elasticsearch DSL with pegjs
  ☆13Updated 2 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆19Updated 8 years ago
• query-ai / queryai-kibana-plugin
  Query.AI plugin for Kibana
  ☆13Updated 5 years ago
• NVISOsecurity / ee-outliers
  Open-source framework to detect outliers in Elasticsearch events
  ☆205Updated last year
• corelight / got_zoom
  A Zeek package that detects Zoom logins and meeting joins
  ☆11Updated 4 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆35Updated 2 years ago
• variationalkk / User-and-Entity-Behavior-Analytics-UEBA
  User and Entity Behavior Analytics by deep learning
  ☆100Updated 3 years ago
• sshahriyar / totalads
  Total Anomaly Detection System for software logs and traces
  ☆9Updated 8 years ago
• PaloAltoNetworks / pyjarm
  pyJARM is a library for doing JARM fingerprinting using python
  ☆50Updated 3 years ago
• kotlaluk / spl-parser
  Parser for Splunk's Search Processing Language (SPL) syntax highlighting
  ☆17Updated 4 years ago
• abzcoding / aptdetector
  Advanced Persistent Threat Detection Using Network Analysis
  ☆22Updated 5 years ago
• childe / dopey
  ES索引的维护脚本, 每天close delete reallocate optimize索引
  ☆23Updated 5 years ago
• apache / metron-bro-plugin-kafka
  Apache Metron
  ☆59Updated 4 years ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated last year
• OpenSOC / opensoc-ui
  User interface for OpenSOC
  ☆100Updated 9 years ago
• skalogs / SkaETL
  Open Source ETL designed for and dedicated to Log processing and transformation
  ☆68Updated last year
• kiwiz / esquery
  Elasticsearch querying library
  ☆20Updated 5 years ago
• ExpediaGroup / adaptive-alerting
  Anomaly detection for streaming time series, featuring automated model selection.
  ☆203Updated 8 months ago
• vishal1991 / Network-Forensics
  • Packet capture (PCAP) file analysis to analyze traffic sent by malicious IP address.
  ☆12Updated 9 years ago
• dogoncouch / siemstress
  Very basic CLI SIEM (Security Information and Event Management system).
  ☆35Updated 6 years ago
• DjGorillaz / anomaly-detection-and-monitoring
  Anomaly detection and monitoring software
  ☆20Updated 6 years ago
• alienfault / ossim
  Open Source Security Information and event Management
  ☆81Updated 9 years ago
• ElasticSA / elsec_dr2an
  Script to create MITRE ATT&CK Navigator layers from the annotated detection rules in Elastic Security (Kibana).
  ☆20Updated last year
• ossec / ossec-rules
  A repository for OSSEC rules and decoders
  ☆51Updated last year
• SimoneCagol / sigma-rules-crawler
  ☆29Updated this week
• jazwiecki / neo4j-cve
  Graph database version of the CVE database
  ☆24Updated last year
• osV22 / ATTACK-Force-Graph
  Generate JSON force-directed/ node graph data from MITRE's ATTACK framework and visualize it interactively
  ☆22Updated 3 years ago