daveherrald / SA_plaso-app-for-splunkView external linksLinks
☆16Apr 16, 2017Updated 8 years ago
Alternatives and similar repositories for SA_plaso-app-for-splunk
Users that are interested in SA_plaso-app-for-splunk are comparing it to the libraries listed below
Sorting:
- A Splunk app with saved reports derived from Sigma rules☆73Apr 24, 2018Updated 7 years ago
- An advanced parser for INDX records☆29Aug 7, 2019Updated 6 years ago
- A Powershell script for frequency analysis of separated values data files.☆17Jan 22, 2014Updated 12 years ago
- "Evolving AppCompat/AmCache data analysis beyond grep"☆209Sep 15, 2021Updated 4 years ago
- ☆24Jan 12, 2026Updated last month
- Python IOC Editor☆65Mar 10, 2015Updated 10 years ago
- threadmap plugin for Volatility Foundation☆27Aug 23, 2021Updated 4 years ago
- Library and tools to access the Volume Shadow Snapshot (VSS) format☆114Dec 20, 2025Updated last month
- ☆32May 14, 2018Updated 7 years ago
- Converts Sigma detection rules to a Splunk alert configuration.☆115May 18, 2020Updated 5 years ago
- Term concordances for each course in the SANS DFIR curriculum. Used for automated index generation.☆69Aug 7, 2020Updated 5 years ago
- Crypto coin ticker counter for Reddit comments.☆10Dec 1, 2021Updated 4 years ago
- a GUI Interface for DFIR Open Source Tools☆10Jun 16, 2015Updated 10 years ago
- Web application to create indexes for GIAC certification examinations.☆150Apr 12, 2023Updated 2 years ago
- Extract files from captured TCP sessions. Support live streams and pcap files.☆49Feb 14, 2013Updated 13 years ago
- It is based on bulk_extractor (https://github.com/simsong/bulk_extractor) and add scanners for record carving☆42Apr 23, 2020Updated 5 years ago
- ☆12Dec 14, 2016Updated 9 years ago
- Integration of fluent-bit and Splunk using the HTTP Event Collector (Splunk HEC)☆10Oct 16, 2018Updated 7 years ago
- Artificial Dog to bark at deer and other garden pests using Raspberry Pi and Groundlight☆12Jun 19, 2024Updated last year
- ☆10May 8, 2018Updated 7 years ago
- A Splunker’s guide to containers☆12Dec 21, 2019Updated 6 years ago
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆40Jun 20, 2023Updated 2 years ago
- Common Vulnerability Scoring System (CVSS) made safe and highly efficient☆49Updated this week
- ☆280Apr 6, 2023Updated 2 years ago
- The Bro/Zeek language cheat sheet☆53Mar 8, 2013Updated 12 years ago
- Volatility plugins created by the author☆44Oct 2, 2015Updated 10 years ago
- ☆13Aug 17, 2020Updated 5 years ago
- a port made of honey for blocking people☆13Jun 24, 2020Updated 5 years ago
- custom bloodhound queries and knowledge base☆12Apr 16, 2024Updated last year
- This app leverages the Adaptive Response framework to perform API calls to Security Trails☆15Feb 14, 2019Updated 7 years ago
- A powershell script for creating a Windows honeyport.☆12Jun 24, 2015Updated 10 years ago
- Transform EQL detection rules to VQL artifacts☆12Nov 12, 2021Updated 4 years ago
- ☆10Dec 24, 2022Updated 3 years ago
- Heart-shaped flashlight PCB for Ariella☆13Sep 2, 2017Updated 8 years ago
- CSV fuzzer/anonymizer☆10Updated this week
- Splunk app to support presentation at .conf2015 on free security tools and Splunk☆10Sep 24, 2015Updated 10 years ago
- Redmine, Pomodoro.app and Todo-txt. Together.☆33Feb 21, 2017Updated 8 years ago
- A GPT-based chatbot who knows the content of your Confluence wiki.☆14Apr 22, 2025Updated 9 months ago
- ☆11Apr 2, 2022Updated 3 years ago