criblio / collector-templates
Templates for Cribl Stream Collectors
☆24Updated last week
Related projects ⓘ
Alternatives and complementary repositories for collector-templates
- Splunk Content Control Tool☆91Updated this week
- Discover for Cloud and Containers Azure☆28Updated this week
- scripts using splunk application lookup-editor endpoint. Download, upload and update splunk lookups content☆28Updated 4 months ago
- RBA is Splunk's method to aggregate low-fidelity security events as interesting observations tagged with security metadata to create high…☆46Updated this week
- Grand Central logging for Cloud Services to Splunk☆36Updated 2 years ago
- SPL cheatsheet for Splunk.☆20Updated last year
- ☆80Updated last month
- Splunk App for Cribl Stream and Edge Observability☆20Updated this week
- A list of Splunk queries that I've collected and used over time.☆72Updated 4 years ago
- TrackMe - Data tracking system for Splunk admins☆49Updated last year
- Guidance on deploying Splunk Enterprise on Azure with automated reference implementation☆30Updated last year
- A repository for generalized splunk code, dashboards, resources and suggestions/recommendations.☆30Updated last year
- Scripted inputs designed to address common use-cases in forwarder misconfigurations in a Splunk deployment☆33Updated 2 months ago
- Ansible playbooks for configuring and managing Splunk Cloud deployments with the Admin Config Service (ACS) API☆25Updated this week
- ☆15Updated last year
- Command line tool to interact with Chronicle's Config Based Normalizer (CBN) APIs.☆27Updated last year
- Collection of useful python scripts to interact with Splunk's API.☆15Updated 2 years ago
- Data validator agains Splunk Common Information Model (CIM)☆75Updated 7 months ago
- Splunk (Other Splunk scripts which do not fit into the SplunkAdmins application)☆38Updated 2 months ago
- Real-time Response scripts and schema☆104Updated 11 months ago
- ☆85Updated 2 years ago
- Risk Based Alerting Supporting Add-On (SA) for Splunk☆45Updated 3 years ago
- This pack is targeted for collections of Window events in the Classic or newer XML format. For events in the Classic format, sometimes th…☆14Updated last year
- This repository contains Splunk queries to hunt some anomalies☆38Updated 2 years ago
- Materials related to a splunk conference talk on git, GitHub, and Splunk☆38Updated last year
- Public script from SANS FOR509 Enterprise Cloud Incident Response☆179Updated last month
- A Proof Of Concept on how to integrate Splunk Cloud in a CICD pipeline☆12Updated 3 years ago