criblio / collector-templatesLinks
Templates for Cribl Stream Collectors
☆48Updated 2 weeks ago
Alternatives and similar repositories for collector-templates
Users that are interested in collector-templates are comparing it to the libraries listed below
Sorting:
- Splunk Content Control Tool☆119Updated last week
- This repository contains Community and Field contributed content for LogScale☆268Updated last month
- Discover for Cloud and Containers Azure☆29Updated 3 weeks ago
- Splunk App for Cribl Stream and Edge Observability☆25Updated 2 months ago
- MISP to Sentinel integration☆74Updated last month
- RBA is Splunk's method to aggregate low-fidelity security events as interesting observations tagged with security metadata to create high…☆57Updated last week
- Web based S1 query navigator for one-click threat hunting☆23Updated 4 years ago
- Save toil in security operations with: Detection & Intelligence Analysis for New Alerts (D.I.A.N.A. )☆211Updated last year
- ☆42Updated 2 months ago
- Scripts to streamline the deployment and use of the CrowdStrike Falcon sensor☆187Updated last month
- compliance assessment and POA&M management for CMMC/NIST 800-171A☆99Updated 8 months ago
- The CrowdStrike Falcon SDK for Python☆434Updated 2 weeks ago
- Dettectinator - The Python library to your DeTT&CT YAML files.☆116Updated 5 months ago
- The principal objective of this project is to develop a knowledge base of the tactics, techniques, and procedures (TTPs) used by insiders…☆146Updated 2 months ago
- Command line tool to interact with Chronicle's Config Based Normalizer (CBN) APIs.☆31Updated 2 years ago
- ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit l…☆163Updated 6 months ago
- ☆98Updated 3 years ago
- ☆87Updated 6 months ago
- Repository of SentinelOne Deep Visibility queries.☆133Updated 4 years ago
- Programming Microsoft Sentinel book☆25Updated last year
- The Infosec Community Definitive Guide to Jupyter Notebooks☆125Updated 4 years ago
- Azure Functions for getting data in to Splunk☆33Updated 7 months ago
- Contains research.splunk.com site code☆11Updated last year
- LogRhythm PowerShell Toolkit☆51Updated last month
- A cross-platform baselining, threat hunting, and attack surface analysis tool for security teams.☆231Updated 5 months ago
- Real-time Response scripts and schema☆117Updated last year
- PowerShell for CrowdStrike's OAuth2 APIs☆435Updated this week
- ☆31Updated last month
- TrackMe - Data tracking system for Splunk admins☆50Updated 2 years ago
- A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon☆210Updated 5 years ago