Alternatives and similar repositories for ecs-logstash-mappings

Users that are interested in ecs-logstash-mappings are comparing it to the libraries listed below

• elastic / ecs-mapper
  Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash
  ☆54Updated 3 years ago
• Cargill / OpenSIEM-Logstash-Parsing
  SIEM Logstash parsing for more than hundred technologies
  ☆188Updated last week
• corelight / community-id-spec
  An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
  ☆187Updated last year
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆34Updated last month
• elastic / security-action-examples
  This repository contains a few examples of actions that can be added to rules within Elastic Security.
  ☆23Updated 8 months ago
• SeisoLLC / zeek-kafka
  A Zeek log writer plugin that publishes to Kafka.
  ☆51Updated 2 months ago
• criblio / criblvision
  Splunk App for Cribl Stream and Edge Observability
  ☆25Updated 3 months ago
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆280Updated 3 weeks ago
• opensearch-project / security-analytics
  Security Analytics enables users for detecting security threats on their security event log data. It will also allow them to modify/tailo…
  ☆91Updated this week
• ocsf / examples
  This repo contains example of raw event examples and possible translations to the OCSF schema.
  ☆48Updated 2 months ago
• wazuh / wazuh-ruleset
  Wazuh - Ruleset
  ☆484Updated last year
• splunk / splunk-app-examples
  App examples for Splunk Enterprise
  ☆149Updated last month
• splunk / splunk-connect-for-syslog
  Splunk Connect for Syslog
  ☆167Updated last week
• guilhemmarchand / trackme
  TrackMe - Data tracking system for Splunk admins
  ☆50Updated 2 years ago
• splunk / kafka-connect-splunk
  Kafka connector for Splunk
  ☆97Updated last month
• logstash-plugins / logstash-codec-cef
  CEF codec for Logstash
  ☆22Updated last year
• guilhemmarchand / TA-jira-service-desk-simple-addon
  Atlasian JIRA add-on for Splunk alert actions
  ☆13Updated 3 weeks ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆86Updated last month
• isalgueiro / otilio
  Beat to get SNMP data
  ☆24Updated 7 years ago
• johnsusek / elastalert-server
  ElastAlert that exposes REST API's for manipulating rules and alerts
  ☆46Updated last week
• TheHive-Project / CortexDocs
  Documentation of Cortex
  ☆174Updated 2 years ago
• wazuh / wazuh-dashboard-plugins
  Plugins for Wazuh Dashboard
  ☆488Updated last week
• Exporttool / exporttool
  This is a python script that can be run on each Splunk Indexer for the purpose of exporting historical bucket data (raw events + metadata…
  ☆11Updated last year
• HASecuritySolutions / Logstash
  Contains Logstash related content including tons of Logstash configurations
  ☆254Updated 4 years ago
• gjanders / SplunkAdmins
  Splunk Admins application to assist with troubleshooting Splunk enterprise installations
  ☆97Updated this week
• splunk / splunk-mltk-container-docker
  Splunk App for Data Science and Deep Learning - container images repository
  ☆59Updated last month
• splunk / splunk-platform-automator
  Ansible framework providing a fast and simple way to spin up complex Splunk environments.
  ☆131Updated last month
• splunk / addonfactory-ucc-generator
  Universal Configuration Console (UCC) is a developer toolkit that simplifies creating Technology Add-ons. UCC provides a comprehensive so…
  ☆76Updated this week
• panther-labs / panther-analysis
  Built-in Panther detection rules and policies
  ☆421Updated this week
• zeek / zeek-docker
  Docker files for building Zeek.
  ☆87Updated 2 years ago