dformoso / splunk-jupyter
☆15Updated this week
Related projects: ⓘ
- Classifier to separate legitimate domains from those generated by a domain generating algorithm (DGA).☆42Updated 7 years ago
- Domain name classifier looking for good vs. possibly malicious providers☆33Updated 6 years ago
- Data Governance app for Splunk☆12Updated 11 months ago
- POC IDS anomaly detection engine built with iPython notebook, matplotlib, pandas, numpy, scikit-learn, d3.js, hyperloglog implementation,…☆78Updated 10 years ago
- Implementation of Context-Graph algorithms for graph enrichment and querying.☆24Updated 9 years ago
- ☆13Updated this week
- ML Toolkit & Showcase application documents☆14Updated 8 years ago
- ☆14Updated 6 years ago
- PyKafka consumer to push events to Splunk HTTP Event Collector☆17Updated 7 years ago
- Data Analysis and Visualization Linux Toolset☆58Updated 7 years ago
- ☆34Updated this week
- Small python library to create semantic graphs in JSON.☆95Updated 8 years ago
- Threat Intelligence Quotient Test - Dataviz and Statistical Analysis of TI feeds☆167Updated 8 years ago
- dataShark is a Security & Network Event Analytics Framework built on Apache Spark☆46Updated 7 years ago
- Move frozen buckets to AWS S3 (and ultimately Glacier) for long term storage☆12Updated 6 years ago
- Ipython notebook that illustrates effectiveness of machine learning algorithms in anomaly detection of netflow data (inbound/outbound DDo…☆78Updated 7 years ago
- ☆12Updated 7 years ago
- A package manager for Zeek☆42Updated last week
- Splunking Crime using Splunk Machine Learning Toolkit☆11Updated 5 years ago
- some scripts for splunk☆51Updated 4 years ago
- ☆33Updated this week
- Beholder is a shell script which installs and configures essentials to peer into your network activity.☆19Updated 7 years ago
- Allows for MAC address to vendor mapping in Splunk☆16Updated 11 months ago
- Splunk custom alert action for Atlassian JIRA☆18Updated 5 years ago
- Logging plugin to bro to send logs to a Kafka broker☆20Updated 6 years ago
- ☆28Updated 7 years ago
- Framework that sits on top of Splunk Enterprise Security to do auto-mitigation☆14Updated 9 years ago
- threat language parser☆60Updated 9 years ago
- A set of Splunk workflow action definitions to export field values to CyberChef for further analysis.☆12Updated 6 years ago