georgestarcher / Splunk-ESIntel-KVStoreLinks
Splunk csv to KVStore ES Threat Intel
☆11Updated 8 years ago
Alternatives and similar repositories for Splunk-ESIntel-KVStore
Users that are interested in Splunk-ESIntel-KVStore are comparing it to the libraries listed below
Sorting:
- ☆55Updated 3 years ago
- Sysmon Splunk App☆46Updated 6 years ago
- Allows for MAC address to vendor mapping in Splunk☆16Updated last year
- scripts to configure the Splunk Universal Forwarder in a locked down state☆40Updated 6 years ago
- Example Splunk Alert Scripts☆20Updated 10 years ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆19Updated 3 years ago
- Carbon Black Feeds☆73Updated 2 years ago
- MineMeld nodes for MISP☆19Updated last year
- Report Generation from the Carbon Black REST API☆15Updated 3 years ago
- Volatility plugins developed and maintained by the community☆21Updated 9 months ago
- This package allows for creating alerts in The Hive from emails retrieved from a Microsoft Exchange mailbox.☆12Updated 7 years ago
- WebUI of MineMeld☆43Updated 2 years ago
- Integrating Sysinternals Autoruns’ logs into Security Onion☆31Updated last year
- Integrate Zeek with Alienvault OTX☆25Updated 4 years ago
- InvestigationPlaybookSpec☆72Updated 7 years ago
- Download a list of suspected malicious IPs and Domains. Create a QRadar Reference Set. Search Your Environment For Malicious IPs☆69Updated 3 years ago
- Network Forensics Bro scripts & pcap samples☆62Updated 11 years ago
- Tools to search through massive amounts of data☆21Updated 7 months ago
- Push "BAD" IPs/Networks into QRadar's "Remote Networks", tag them properly, and use them!☆18Updated 11 years ago
- A collection of notebooks built for defensive and offensive operations.☆77Updated 4 years ago
- Python scripts to download, parse, and enrich scans.io study data and load into Splunk for research, threat intelligence gathering, and s…☆19Updated last week
- ☆49Updated 4 years ago
- Expert Investigation Guides☆51Updated 4 years ago
- Community Sharing Repository for Carbon Black and Bit9 Platforms☆27Updated 3 years ago
- Actionable analytics designed to combat threats based on MITRE's ATT&CK.☆22Updated 5 years ago
- Splunk App to assist Sysmon Threat Hunting☆38Updated 8 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- Python script that gets IOC from MISP and converts it into BRO intel files.☆13Updated 9 years ago
- Python script to pull various IOCs from PDFs☆15Updated 10 years ago
- ☆48Updated 9 years ago