Alternatives and similar repositories for logminer

Users that are interested in logminer are comparing it to the libraries listed below

• salspaugh / splparser
  Simple parser for Splunk Processing Language (SPL) written in Python.
  ☆35Updated 7 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 9 years ago
• Anonymity94 / spl2dsl
  Convert Splunk SPL to Elasticsearch DSL with pegjs
  ☆13Updated 3 years ago
• morrigan / user-behavior-anomaly-detector
  User anomaly detector based on logs generated by Osquery framework and machine learning to process those logs.
  ☆33Updated 7 years ago
• chenryn / ESPL
  Elastic Search Processing Language
  ☆49Updated 8 years ago
• NVISOsecurity / ee-outliers
  Open-source framework to detect outliers in Elasticsearch events
  ☆208Updated 2 years ago
• apache / metron-bro-plugin-kafka
  Apache Metron
  ☆59Updated 4 years ago
• NybbleHub / Bluekeep-Detection-Rule
  Bluekeep detection rule by using Apache Flink CEP (Complex Event Processing) Library and Markov Chain.
  ☆9Updated 5 years ago
• query-ai / queryai-kibana-plugin
  Query.AI plugin for Kibana
  ☆13Updated 5 years ago
• kotlaluk / spl-parser
  Parser for Splunk's Search Processing Language (SPL) syntax highlighting
  ☆19Updated 5 years ago
• OpenSOC / opensoc-ui
  User interface for OpenSOC
  ☆100Updated 9 years ago
• ssallys / p3
  An open source pcap packet and NetFlow file analysis tool using Hadoop MapReduce and Hive.
  ☆43Updated 11 years ago
• jazwiecki / neo4j-cve
  Graph database version of the CVE database
  ☆25Updated 2 years ago
• childe / dopey
  ES索引的维护脚本, 每天close delete reallocate optimize索引
  ☆23Updated 6 years ago
• sshahriyar / totalads
  Total Anomaly Detection System for software logs and traces
  ☆10Updated 9 years ago
• tianyulab / ThreatDetectionRules
  威胁检测规则集
  ☆15Updated 5 years ago
• beave / sagan-rules
  Rule sets for Sagan
  ☆104Updated 4 years ago
• dgkim0803 / CTIMiner
  CTI database generator and public dataset
  ☆21Updated 5 years ago
• gy-games / shield
  基于Strom的日志实时流量分析主动防御(CCFirewall)系统
  ☆71Updated 7 years ago
• tnt1200 / passive-dns
  passive dns collector
  ☆10Updated 8 years ago
• AlkenePan / awesome-bro
  Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))
  ☆31Updated 5 years ago
• dbrandt / proc_events
  Access the process event connector in linux kernels from Python.
  ☆26Updated 3 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆35Updated 2 years ago
• kiwiz / esquery
  Elasticsearch querying library
  ☆20Updated 5 years ago
• jvdroit / Suricata-rules
  ☆9Updated 8 years ago
• OpenSOC / opensoc-streaming
  Extensible set of Storm topologies and topology attributes for streaming, enriching, indexing, and storing telemetry in Hadoop.
  ☆132Updated last year
• theY4Kman / parsuricata
  Parse Suricata rules
  ☆12Updated last year
• vishal1991 / Network-Forensics
  • Packet capture (PCAP) file analysis to analyze traffic sent by malicious IP address.
  ☆12Updated 10 years ago
• 0xxon / zeek-tls-log-alternative
  Zeek scripts that provide an alternative log file logging TLS/SSL traffic
  ☆10Updated 4 years ago
• 0x4D31 / Presentations
  Some of the presentations given by me
  ☆18Updated 6 months ago