criblio / collector-templates

Related projects ⓘ

Alternatives and complementary repositories for collector-templates

• CrowdStrike / Cloud-Azure
  Discover for Cloud and Containers Azure
  ☆28Updated 2 weeks ago
• criblio / criblvision
  Splunk App for Cribl Stream and Edge Observability
  ☆22Updated 2 weeks ago
• splunk / contentctl
  Splunk Content Control Tool
  ☆91Updated this week
• splunk / rba
  RBA is Splunk's method to aggregate low-fidelity security events as interesting observations tagged with security metadata to create high…
  ☆47Updated last week
• garybushey / ProgrammingMicrosoftSentinel
  Programming Microsoft Sentinel book
  ☆22Updated 11 months ago
• CrowdStrike / logscale-community-content
  This repository contains Community and Field contributed content for LogScale
  ☆162Updated 2 weeks ago
• splunk / azure-functions-splunk
  Azure Functions for getting data in to Splunk
  ☆31Updated 6 months ago
• mthcht / lookup-editor_scripts
  scripts using splunk application lookup-editor endpoint. Download, upload and update splunk lookups content
  ☆28Updated 4 months ago
• amiracle / grand_central
  Grand Central logging for Cloud Services to Splunk
  ☆36Updated 2 years ago
• criblio / cribl-training
  Cribl Environment for learning LogStream
  ☆12Updated 4 years ago
• jewnix / splunk-spec-files
  Splunk spec files version history
  ☆32Updated 2 months ago
• garybushey / SentinelConfigurationToWord
  Create a Word document showing your Sentinel configuration
  ☆9Updated last year
• codingWithJimmy / SplunkForwarderRepairKit
  Scripted inputs designed to address common use-cases in forwarder misconfigurations in a Splunk deployment
  ☆33Updated 2 months ago
• ManagedSentinel / AzureSentinelKQLScripts
  Various tools used to monitor and troubleshoot Azure Sentinel data
  ☆29Updated 3 weeks ago
• Azure / splunk-enterprise
  Guidance on deploying Splunk Enterprise on Azure with automated reference implementation
  ☆30Updated last year
• SecurityBagel / CMMC-Bagel
  compliance assessment and POA&M management for CMMC/NIST 800-171A
  ☆52Updated this week
• cudeso / misp2sentinel
  MISP to Sentinel integration
  ☆60Updated this week
• mercedes-benz / ansible-for-splunk-cloud
  Ansible playbooks for configuring and managing Splunk Cloud deployments with the Admin Config Service (ACS) API
  ☆25Updated 2 weeks ago
• SophosRapidResponse / OSQuery
  ☆80Updated 2 months ago
• ep3p / Sentinel_KQL
  In this repository you may find KQL (Kusto Query Language) queries and Watchlist schemes for data sources related to Microsoft Sentinel (…
  ☆102Updated this week
• shauntdergrigorian / splunkqueries
  A list of Splunk queries that I've collected and used over time.
  ☆72Updated 4 years ago
• microsoft / AzDetectSuite
  A collection of ARM-based detections for Azure/AzureAD based TTPs
  ☆80Updated 11 months ago
• CrowdStrike / falcon-scripts
  Scripts to streamline the deployment and use of the CrowdStrike Falcon sensor
  ☆155Updated last week
• EEN421 / KQL-Queries
  Ian Hanley's deceptively simple KQL queries.
  ☆44Updated last month
• keyboardcrunch / sentinelone-queries
  Repository of SentinelOne Deep Visibility queries.
  ☆119Updated 3 years ago
• guilhemmarchand / trackme
  TrackMe - Data tracking system for Splunk admins
  ☆49Updated last year
• gjanders / Splunk
  Splunk (Other Splunk scripts which do not fit into the SplunkAdmins application)
  ☆38Updated 2 months ago