Alternatives and similar repositories for scansio-sonar-splunk

Users that are interested in scansio-sonar-splunk are comparing it to the libraries listed below

• CIRCL / bgpranking-redis-api

  View on GitHub
  API to access the Redis database of a BGP Ranking instance.
  ☆17Dec 11, 2017Updated 8 years ago
• jay-johnson / spylunking

  View on GitHub
  Drill down into your python logs using JSON logs stored in Splunk - supports sending over TCP or the Splunk HEC REST API handlers (using …
  ☆13Oct 18, 2022Updated 3 years ago
• blockadeio / cloud_node

  View on GitHub
  Python-based cloud node for local use
  ☆11Mar 7, 2018Updated 7 years ago
• tmartin14 / splunk-sample-data

  View on GitHub
  A place to store sample data files for Splunk
  ☆14Aug 3, 2018Updated 7 years ago
• gamelinux / activedns

  View on GitHub
  An active domain name query tool to help keep track of domain name movements...
  ☆16Mar 28, 2021Updated 4 years ago
• mpars0ns / scansio-sonar-es

  View on GitHub
  Python scripts to parse scans.io ssl data and ingest into elasticsearch for searching
  ☆33May 14, 2016Updated 9 years ago
• egaus / malicious_url_analysis

  View on GitHub
  ☆18Jun 8, 2018Updated 7 years ago
• passivetotal / maltego_machines

  View on GitHub
  Machines created to speed up analysis inside of Maltego
  ☆16Mar 17, 2016Updated 9 years ago
• apger / SA-RBA

  View on GitHub
  Risk Based Alerting Supporting Add-On (SA) for Splunk
  ☆44Oct 28, 2021Updated 4 years ago
• daveherrald / SA-attck_nav

  View on GitHub
  Splunk App for MITRE Att&CK Navigator(TM)
  ☆23Mar 25, 2021Updated 4 years ago
• brianwarehime / goldphish

  View on GitHub
  A Maltego transform and machine to identify possible phishing vectors using permutated domains
  ☆15Oct 14, 2015Updated 10 years ago
• splunk / splunk-tableau-wdc

  View on GitHub
  Splunk Tableau Web Data Connector (WDC) Example
  ☆20Oct 27, 2023Updated 2 years ago
• Neo23x0 / space-id

  View on GitHub
  Invisible Watermarks with Space Characters in ASCII Files
  ☆21Jun 14, 2018Updated 7 years ago
• karttoon / iocs

  View on GitHub
  IoC's, PCRE's, YARA's etc
  ☆24Mar 25, 2025Updated 10 months ago
• nccgroup / yaml2yara

  View on GitHub
  Generate bulk YARA rules from YAML input
  ☆22Feb 3, 2020Updated 6 years ago
• anl-cyberscience / LQMToolset

  View on GitHub
  Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.
  ☆20Oct 24, 2018Updated 7 years ago
• S03D4-164 / Hiryu

  View on GitHub
  IOC Management and Visualization Tool
  ☆48Dec 8, 2022Updated 3 years ago
• rkovar / splunk-hunting-helpers

  View on GitHub
  ☆55Mar 2, 2022Updated 3 years ago
• wrayjustin / yaids

  View on GitHub
  YAIDS - Yara-Based IDS - Yara as an Intrusion Detection System / Yet Another Intrusion Detection System - An Intrusion Detection System (…
  ☆26Oct 20, 2022Updated 3 years ago
• daverstephens / The-SOC-Shop

  View on GitHub
  Repository of scripts/tools that may be useful in Security Operations Centres (SOC)
  ☆55Nov 25, 2020Updated 5 years ago
• MHaggis / bookish-happiness

  View on GitHub
  OG Atomic Red Team
  ☆29Jun 12, 2018Updated 7 years ago
• znb / Elastic-Elephant

  View on GitHub
  Fun with Amazon AWS and Maltego
  ☆29Jun 5, 2017Updated 8 years ago
• CIRCL / PyEUPI

  View on GitHub
  Client API to query the Phishing Initiative service API
  ☆24Jan 8, 2026Updated last month
• CIRCL / traceroute-circl

  View on GitHub
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆40Oct 9, 2024Updated last year
• ThreatConnect-Inc / threatconnect-playbooks

  View on GitHub
  Community driven repository of Playbooks and Apps for ThreatConnect.
  ☆74Nov 5, 2025Updated 3 months ago
• hire-vladimir / SA-IdentityAssetExtraction

  View on GitHub
  Allows to pull asset and identity data into Splunk app for Enterprise Security from LDAP and other sources
  ☆28Feb 23, 2018Updated 7 years ago
• lolnate / vt-hunter

  View on GitHub
  Automation for VirusTotal
  ☆31May 6, 2016Updated 9 years ago
• PUNCH-Cyber / stoq-plugins-public

  View on GitHub
  stoQ Public Plugins
  ☆71Feb 27, 2023Updated 2 years ago
• JacobPimental / gunslinger

  View on GitHub
  Gunslinger is used to hunt for Magecart sites using URLScan's API
  ☆31Mar 15, 2022Updated 3 years ago
• TheHive-Project / Synapse

  View on GitHub
  Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform
  ☆71Jul 28, 2023Updated 2 years ago
• mhassan2 / splunk-n-box

  View on GitHub
  Docker Splunk "Orchestration" bash script (6,000+ lines) to create fully automated pre-configured splunk site-2-site clusters or stand al…
  ☆139Feb 29, 2020Updated 5 years ago
• nsacyber / Splunk-Assessment-of-Mitigation-Implementations

  View on GitHub
  Automatically scores how well Windows systems have implemented some of the top 10 Information Assurance mitigation strategies. #nsacyber
  ☆76May 25, 2016Updated 9 years ago
• rasbt / mputil

  View on GitHub
  Utility functions for Python's multiprocessing standard library module
  ☆39Aug 1, 2018Updated 7 years ago
• csirtgadgets / csirtg-smrt-v1

  View on GitHub
  the fastest way to consume threat intelligence.
  ☆31Mar 9, 2023Updated 2 years ago
• michiel / docker-compose-splunk-fluentbit

  View on GitHub
  Integration of fluent-bit and Splunk using the HTTP Event Collector (Splunk HEC)
  ☆10Oct 16, 2018Updated 7 years ago
• jan-tee / cycli-examples

  View on GitHub
  Examples for the CyCLI Powershell module
  ☆12Mar 8, 2019Updated 6 years ago
• diveshlunker / library-management-python

  View on GitHub
  Library management system using python
  ☆11Mar 13, 2019Updated 6 years ago
• nericksen / xsoar-md

  View on GitHub
  Additional README's for XSOAR and XSOAR related things
  ☆13Oct 4, 2023Updated 2 years ago
• usnistgov / dmarc-tester

  View on GitHub
  A mail reflector written in Python with modules for SPF, DKIM and DMARC authentication, used as a test system for testing correspondent's…
  ☆13Sep 15, 2016Updated 9 years ago