criblio / collector-templates

Related projects ⓘ

Alternatives and complementary repositories for collector-templates

• splunk / contentctl
  Splunk Content Control Tool
  ☆91Updated this week
• CrowdStrike / Cloud-Azure
  Discover for Cloud and Containers Azure
  ☆28Updated this week
• mthcht / lookup-editor_scripts
  scripts using splunk application lookup-editor endpoint. Download, upload and update splunk lookups content
  ☆28Updated 4 months ago
• splunk / rba
  RBA is Splunk's method to aggregate low-fidelity security events as interesting observations tagged with security metadata to create high…
  ☆46Updated this week
• amiracle / grand_central
  Grand Central logging for Cloud Services to Splunk
  ☆36Updated 2 years ago
• christian-taillon / splunk-spl
  SPL cheatsheet for Splunk.
  ☆20Updated last year
• SophosRapidResponse / OSQuery
  ☆80Updated last month
• criblio / criblvision
  Splunk App for Cribl Stream and Edge Observability
  ☆20Updated this week
• shauntdergrigorian / splunkqueries
  A list of Splunk queries that I've collected and used over time.
  ☆72Updated 4 years ago
• guilhemmarchand / trackme
  TrackMe - Data tracking system for Splunk admins
  ☆49Updated last year
• Azure / splunk-enterprise
  Guidance on deploying Splunk Enterprise on Azure with automated reference implementation
  ☆30Updated last year
• ChrisForsythe / SplunkStuff
  A repository for generalized splunk code, dashboards, resources and suggestions/recommendations.
  ☆30Updated last year
• codingWithJimmy / SplunkForwarderRepairKit
  Scripted inputs designed to address common use-cases in forwarder misconfigurations in a Splunk deployment
  ☆33Updated 2 months ago
• mercedes-benz / ansible-for-splunk-cloud
  Ansible playbooks for configuring and managing Splunk Cloud deployments with the Admin Config Service (ACS) API
  ☆25Updated this week
• bluemountaincyber / building-detections-aws
  ☆15Updated last year
• chronicle / cbn-tool
  Command line tool to interact with Chronicle's Config Based Normalizer (CBN) APIs.
  ☆27Updated last year
• paychex / splunk-python
  Collection of useful python scripts to interact with Splunk's API.
  ☆15Updated 2 years ago
• hire-vladimir / SA-cim_vladiator
  Data validator agains Splunk Common Information Model (CIM)
  ☆75Updated 7 months ago
• gjanders / Splunk
  Splunk (Other Splunk scripts which do not fit into the SplunkAdmins application)
  ☆38Updated 2 months ago
• bk-cs / rtr
  Real-time Response scripts and schema
  ☆104Updated 11 months ago
• k-bailey / detection-engineering-maturity-matrix
  ☆85Updated 2 years ago
• apger / SA-RBA
  Risk Based Alerting Supporting Add-On (SA) for Splunk
  ☆45Updated 3 years ago
• criblpacks / cribl-windows-events
  This pack is targeted for collections of Window events in the Classic or newer XML format. For events in the Classic format, sometimes th…
  ☆14Updated last year
• signorrayan / SplunkThreatHunting
  This repository contains Splunk queries to hunt some anomalies
  ☆38Updated 2 years ago
• MattUebel / git-good-with-splunk
  Materials related to a splunk conference talk on git, GitHub, and Splunk
  ☆38Updated last year
• dlcowen / sansfor509
  Public script from SANS FOR509 Enterprise Cloud Incident Response
  ☆179Updated last month
• atkouki / splunk-cloud-cicd
  A Proof Of Concept on how to integrate Splunk Cloud in a CICD pipeline
  ☆12Updated 3 years ago