davisshannon/Splunk-Sunburst

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/davisshannon/Splunk-Sunburst)

davisshannon / Splunk-Sunburst

Sunburst IOCs for Splunk Ingest

☆18

Alternatives and similar repositories for Splunk-Sunburst

Users that are interested in Splunk-Sunburst are comparing it to the libraries listed below

Sorting:

rkovar / sunburstlookups
View on GitHub
Quick lookup files for SUNBURST Backdoor
☆12Dec 15, 2020Updated 5 years ago
smittix / kali-setup
View on GitHub
A quick bash script that I created in order to speed up the creation of usable kali boxes.
☆11Oct 29, 2021Updated 4 years ago
h0rv4th / c2matrix-analyzer
View on GitHub
Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack
☆12Apr 18, 2020Updated 5 years ago
vietjovi / secret-detection
View on GitHub
Finding your secret(Credential, API Key, AWS Key, Token, etc.) in your source code, files
☆17Jan 26, 2026Updated last month
jschicht / SetRegTime
View on GitHub
Registry timestamp manipulation
☆18Feb 26, 2014Updated 12 years ago
splunk / terraform-provider-scp
View on GitHub
Splunk Terraform Provider to manage config resources for Splunk Cloud Platform
☆22Updated this week
jorritfolmer / EDRevals
View on GitHub
Splunk app to compare Endpoint Detection and Response solutions based on MITRE ATT&CK evaluations (APT3, APT29, Carbanak + FIN7, Wizard S…
☆19Sep 5, 2022Updated 3 years ago
splunk / rwi_executive_dashboard
View on GitHub
Splunk Remote Work Insights - Executive Dashboard
☆43Aug 20, 2020Updated 5 years ago
linuxacademy / content-aws-ccp-labs
View on GitHub
CCP, Kesha Williams, 11-5-2020
☆20Jul 6, 2023Updated 2 years ago
elysiumsecurityltd / IRM
View on GitHub
Incident Response Methodologies (IRM), also called Incident Playbook, based on the work done by the CERT Societe General
☆24Dec 16, 2021Updated 4 years ago
JasonConger / SplunkConf18
View on GitHub
Splunk .conf18 - Dashboard Tips, Tricks and Hacks
☆23Oct 16, 2018Updated 7 years ago
NishantPuri99 / TryHackMe-OWASP-Top10
View on GitHub
My first trial at Ethical Hacking Write Ups
☆23Jul 23, 2020Updated 5 years ago
hpthreatresearch / iocs
View on GitHub
Indicators of Compromise (IOCs) accompanying HP Threat Research blog posts and reports.
☆29Apr 10, 2024Updated last year
swisscom / Invoke-Forensics
View on GitHub
Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.
☆118Nov 28, 2023Updated 2 years ago
ChrisYounger / highlighter
View on GitHub
A syntax highlighter for Splunk SPL and other files
☆27Oct 3, 2022Updated 3 years ago
catalyst256 / CyberNomadResources
View on GitHub
Accompanying documentation, images, source code and other stuff from the cybernomad.online blog
☆27Sep 21, 2020Updated 5 years ago
KhalidAlEssa / CodeX
View on GitHub
CodeX Tool is to Convert Phishing URL to qr code !
☆16Feb 16, 2021Updated 5 years ago
lacework-alliances / aws-org-cf-lacework
View on GitHub
Cloud Formation resources for integrating Lacework with an AWS Organization (NOT using Control Tower)
☆11Jan 7, 2026Updated 2 months ago
nidem / forgedpillow
View on GitHub
A tool to modify timestamps in a packet capture to a user selected date
☆31Aug 11, 2021Updated 4 years ago
defensivedepth / osquery-filters
View on GitHub
☆34Aug 8, 2023Updated 2 years ago
MISP / misp-training-lea
View on GitHub
Practical Information Sharing between Law Enforcement and CSIRT communities using MISP
☆35Sep 18, 2023Updated 2 years ago
amiracle / cooking_with_Splunk_and_AWS
View on GitHub
Workshop showing you how to setup Amazon Web Services to send data to Splunk
☆74Sep 9, 2020Updated 5 years ago
boku7 / x64win-AddRdpAdminShellcode
View on GitHub
64bit Windows 10 shellcode that adds user BOKU:SP3C1ALM0V3 to the system and the localgroups Administrators & "Remote Desktop Users"
☆39May 3, 2021Updated 4 years ago
GohEeEn / TryHackMe-Write-Up
View on GitHub
The entire walkthrough of all my resolved TryHackMe rooms
☆71May 24, 2023Updated 2 years ago
brimorlabs / KStrike
View on GitHub
Stand-alone parser for User Access Logging from Server 2012 and newer systems
☆78Jan 9, 2024Updated 2 years ago
weslambert / securityonion-misp
View on GitHub
☆37Dec 17, 2020Updated 5 years ago
P4T12ICK / Sigma-Rule-Repository
View on GitHub
Sigma Detection Rule Repository
☆92Jun 18, 2020Updated 5 years ago
PwCUK-CTO / OperationCloudHopper
View on GitHub
Indicators of compromise relating to our report on APT10's targeting of global MSPs
☆10Sep 26, 2017Updated 8 years ago
kgretzky / goproxy
View on GitHub
An HTTP proxy library for Go
☆17Jun 22, 2022Updated 3 years ago
soluble-ai / soluble-cli
View on GitHub
☆11Sep 30, 2024Updated last year
NomanProdhan / malbuzz
View on GitHub
It's a handy tool to help you analyze malware. You can use this tool to query your malware samples using different hashes or find all oth…
☆20Jul 22, 2025Updated 7 months ago
alswl / yed-palettes
View on GitHub
☆10May 8, 2018Updated 7 years ago
msdirtbag / ADXFlowmaster
View on GitHub
ADXFlowmaster helps SecOps teams Threat Hunt suspicious network traffic inside & outside of Azure.
☆40Oct 30, 2024Updated last year
apger / SA-RBA
View on GitHub
Risk Based Alerting Supporting Add-On (SA) for Splunk
☆44Oct 28, 2021Updated 4 years ago
fox-it / citrix-netscaler-triage
View on GitHub
Dissect triage scripts for Citrix NetScaler devices
☆69Nov 17, 2025Updated 3 months ago
MrCalv1n / EmailAnalyzer
View on GitHub
Cybersecurity - a python3 script to parse and analyze .msg and .eml email files
☆14Jan 8, 2020Updated 6 years ago
dirk-weimar / let-me-confluence-that-for-you
View on GitHub
A GPT-based chatbot who knows the content of your Confluence wiki.
☆14Apr 22, 2025Updated 10 months ago
andreafortuna / pycodeinjector
View on GitHub
Python code injection library
☆10Jul 30, 2018Updated 7 years ago
danielgottt / CyberBodega
View on GitHub
A conglomeration of resources for any color of the rainbow
☆14Feb 12, 2026Updated 3 weeks ago