georgestarcher / Splunk-ESIntel-KVStore
Splunk csv to KVStore ES Threat Intel
☆10Updated 8 years ago
Related projects ⓘ
Alternatives and complementary repositories for Splunk-ESIntel-KVStore
- ☆55Updated 2 years ago
- Python library for the ArcSight logger REST API☆27Updated 3 years ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆19Updated 2 years ago
- Sysmon Splunk App☆46Updated 6 years ago
- Threat Intelligence distribution☆30Updated 8 years ago
- scripts to configure the Splunk Universal Forwarder in a locked down state☆40Updated 5 years ago
- Network Forensics Bro scripts & pcap samples☆62Updated 10 years ago
- Python script to pull various IOCs from PDFs☆15Updated 9 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 5 years ago
- InvestigationPlaybookSpec☆72Updated 7 years ago
- Dashboards and loader for ROCK NSM dashboards☆47Updated last year
- MineMeld nodes for MISP☆18Updated 9 months ago
- Python script that gets IOC from MISP and converts it into BRO intel files.☆13Updated 8 years ago
- Beholder is a shell script which installs and configures essentials to peer into your network activity.☆19Updated 7 years ago
- ☆48Updated 4 years ago
- Actionable analytics designed to combat threats based on MITRE's ATT&CK.☆22Updated 5 years ago
- Powershell Functions to interact with TheHive-Project☆10Updated 5 years ago
- Imports Alienvault OTX pulses to a MISP instance☆52Updated 3 years ago
- Carbon Black Feeds☆70Updated last year
- Push "BAD" IPs/Networks into QRadar's "Remote Networks", tag them properly, and use them!☆17Updated 11 years ago
- This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.☆21Updated 6 years ago
- Splunk app to support presentation at .conf2015 on free security tools and Splunk☆10Updated 9 years ago