Alternatives and similar repositories for collector-templates

Users that are interested in collector-templates are comparing it to the libraries listed below

• splunk / contentctl
  Splunk Content Control Tool
  ☆124Updated this week
• splunk / rba
  RBA is Splunk's method to aggregate low-fidelity security events as interesting observations tagged with security metadata to create high…
  ☆61Updated 2 weeks ago
• splunk / security_content_docs
  Contains research.splunk.com site code
  ☆11Updated last year
• CrowdStrike / logscale-community-content
  This repository contains Community and Field contributed content for LogScale
  ☆303Updated this week
• CrowdStrike / Cloud-Azure
  Discover for Cloud and Containers Azure
  ☆30Updated last week
• splunk / azure-functions-splunk
  Azure Functions for getting data in to Splunk
  ☆33Updated last month
• guilhemmarchand / trackme
  TrackMe - Data tracking system for Splunk admins
  ☆50Updated 2 years ago
• inodee / spl-to-kql
  The idea is simply to save some quick notes that will make it easier for Splunk users to leverage KQL (Kusto), especially giving projects…
  ☆44Updated 5 years ago
• garybushey / ProgrammingMicrosoftSentinel
  Programming Microsoft Sentinel book
  ☆25Updated last year
• criblio / criblvision
  Splunk App for Cribl Stream and Edge Observability
  ☆25Updated 4 months ago
• mthcht / lookup-editor_scripts
  scripts using splunk application lookup-editor endpoint. Download, upload and update splunk lookups content
  ☆31Updated last year
• k-bailey / detection-engineering-maturity-matrix
  ☆98Updated 3 years ago
• siriussecurity / dettectinator
  Dettectinator - The Python library to your DeTT&CT YAML files.
  ☆118Updated 8 months ago
• center-for-threat-informed-defense / security-stack-mappings
  🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…
  ☆390Updated last year
• dlcowen / sansfor509
  Public script from SANS FOR509 Enterprise Cloud Incident Response
  ☆215Updated last month
• keyboardcrunch / SentinelOne-Query-Navigator
  Web based S1 query navigator for one-click threat hunting
  ☆24Updated 4 years ago
• cudeso / misp2sentinel
  MISP to Sentinel integration
  ☆77Updated this week
• SophosRapidResponse / OSQuery
  ☆88Updated 9 months ago
• shauntdergrigorian / splunkqueries
  A list of Splunk queries that I've collected and used over time.
  ☆88Updated 5 years ago
• chronicle / cbn-tool
  Command line tool to interact with Chronicle's Config Based Normalizer (CBN) APIs.
  ☆31Updated 2 years ago
• gjanders / Splunk
  Splunk (Other Splunk scripts which do not fit into the SplunkAdmins application)
  ☆41Updated 2 months ago
• invictus-ir / ALFA
  ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit l…
  ☆166Updated last week
• AttackIQ / pySigma-backend-kusto
  ☆43Updated last week
• inhashed / thehive-sentinel-integration
  Integration tools for TheHive and Azure Sentinel
  ☆13Updated 5 years ago
• cisagov / shareable-soar-workflows
  This is a repository of vendor-agnostic workflows provided for those interested in deploying Security Orchestration, Automation, and Resp…
  ☆89Updated 4 years ago
• splunk / securitydatasets
  Home for Splunk security datasets.
  ☆126Updated 5 years ago
• splunk / splunk-connect-for-syslog
  Splunk Connect for Syslog
  ☆171Updated this week
• codingWithJimmy / SplunkForwarderRepairKit
  Scripted inputs designed to address common use-cases in forwarder misconfigurations in a Splunk deployment
  ☆35Updated last year
• PwC-IR / Business-Email-Compromise-Guide
  The Business Email Compromise Guide sets out to describe 10 steps for performing a Business Email Compromise (BEC) investigation in an Of…
  ☆265Updated 4 years ago
• cylaris / awesomekql
  Microsoft Sentinel, Defender for Endpoint - KQL Detection Packs
  ☆54Updated 2 years ago