davisshannon / Splunk-SunburstView external linksLinks
Sunburst IOCs for Splunk Ingest
☆18Jan 28, 2021Updated 5 years ago
Alternatives and similar repositories for Splunk-Sunburst
Users that are interested in Splunk-Sunburst are comparing it to the libraries listed below
Sorting:
- Quick lookup files for SUNBURST Backdoor☆12Dec 15, 2020Updated 5 years ago
- A collection of Python resources for Blue Team security work☆16Sep 23, 2018Updated 7 years ago
- Finding your secret(Credential, API Key, AWS Key, Token, etc.) in your source code, files☆17Jan 26, 2026Updated 2 weeks ago
- Registry timestamp manipulation☆17Feb 26, 2014Updated 11 years ago
- Splunk Remote Work Insights - Executive Dashboard☆43Aug 20, 2020Updated 5 years ago
- CCP, Kesha Williams, 11-5-2020☆20Jul 6, 2023Updated 2 years ago
- Incident Response Methodologies (IRM), also called Incident Playbook, based on the work done by the CERT Societe General☆24Dec 16, 2021Updated 4 years ago
- Splunk .conf18 - Dashboard Tips, Tricks and Hacks☆23Oct 16, 2018Updated 7 years ago
- Searches and dashboards to assist with optimising concurrency settings☆30Mar 4, 2022Updated 3 years ago
- Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.☆117Nov 28, 2023Updated 2 years ago
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆111Feb 6, 2020Updated 6 years ago
- Accompanying documentation, images, source code and other stuff from the cybernomad.online blog☆27Sep 21, 2020Updated 5 years ago
- ☆26Jun 22, 2022Updated 3 years ago
- A syntax highlighter for Splunk SPL and other files☆27Oct 3, 2022Updated 3 years ago
- CodeX Tool is to Convert Phishing URL to qr code !☆16Feb 16, 2021Updated 4 years ago
- Cloud Formation resources for integrating Lacework with an AWS Organization (NOT using Control Tower)☆11Jan 7, 2026Updated last month
- A tool to modify timestamps in a packet capture to a user selected date☆31Aug 11, 2021Updated 4 years ago
- ☆34Aug 8, 2023Updated 2 years ago
- Practical Information Sharing between Law Enforcement and CSIRT communities using MISP☆35Sep 18, 2023Updated 2 years ago
- Workshop showing you how to setup Amazon Web Services to send data to Splunk☆74Sep 9, 2020Updated 5 years ago
- 64bit Windows 10 shellcode that adds user BOKU:SP3C1ALM0V3 to the system and the localgroups Administrators & "Remote Desktop Users"☆41May 3, 2021Updated 4 years ago
- The entire walkthrough of all my resolved TryHackMe rooms☆70May 24, 2023Updated 2 years ago
- Stand-alone parser for User Access Logging from Server 2012 and newer systems☆78Jan 9, 2024Updated 2 years ago
- ☆37Dec 17, 2020Updated 5 years ago
- ☆42Dec 22, 2020Updated 5 years ago
- Sigma Detection Rule Repository☆92Jun 18, 2020Updated 5 years ago
- It's a handy tool to help you analyze malware. You can use this tool to query your malware samples using different hashes or find all oth…☆20Jul 22, 2025Updated 6 months ago
- Sample queries for Advanced hunting in Windows Defender ATP☆11Apr 22, 2020Updated 5 years ago
- ☆10May 8, 2018Updated 7 years ago
- Indicators of compromise relating to our report on APT10's targeting of global MSPs☆10Sep 26, 2017Updated 8 years ago
- An HTTP proxy library for Go☆17Jun 22, 2022Updated 3 years ago
- ☆11Sep 30, 2024Updated last year
- WebUI of MineMeld☆43Mar 16, 2023Updated 2 years ago
- Deploy MISP Project software with Vagrant.☆45Jun 15, 2020Updated 5 years ago
- ADXFlowmaster helps SecOps teams Threat Hunt suspicious network traffic inside & outside of Azure.☆40Oct 30, 2024Updated last year
- Risk Based Alerting Supporting Add-On (SA) for Splunk☆44Oct 28, 2021Updated 4 years ago
- Dissect triage scripts for Citrix NetScaler devices☆69Nov 17, 2025Updated 2 months ago
- Netwitness Maltego integration Project☆18May 9, 2017Updated 8 years ago
- Cybersecurity - a python3 script to parse and analyze .msg and .eml email files☆14Jan 8, 2020Updated 6 years ago