gose / elastic-data-lakeLinks
Elastic Data Lake
☆23Updated 3 years ago
Alternatives and similar repositories for elastic-data-lake
Users that are interested in elastic-data-lake are comparing it to the libraries listed below
Sorting:
- SIEM Logstash parsing for more than hundred technologies☆184Updated last month
- Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash☆54Updated 3 years ago
- A collection of datasets, docker-compose files, notes, and other stuff related to the Elastic stack.☆73Updated 3 months ago
- TrackMe - Data tracking system for Splunk admins☆50Updated 2 years ago
- This repository contains a few examples of actions that can be added to rules within Elastic Security.☆22Updated 4 months ago
- Wazuh - Splunk App☆55Updated 8 months ago
- ☆38Updated 5 years ago
- ☆23Updated 2 weeks ago
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 4 years ago
- A search command for Splunk which will allow you to search Elastic Search and display the results in the Splunk GUI☆69Updated 8 years ago
- Splunk Admins application to assist with troubleshooting Splunk enterprise installations☆95Updated 3 weeks ago
- Parse wazuh[HIDS] alerts into ECS mapping using Filebeat☆27Updated 4 years ago
- Contains Logstash related content including tons of Logstash configurations☆253Updated 3 years ago
- Visual Studio Code Extension for Splunk☆91Updated 3 weeks ago
- A Workflow for Data Scientists to bring Jupyter Notebook Visualizations to Kibana Dashboards☆45Updated 2 years ago
- Kafka connector for Splunk☆93Updated 9 months ago
- Examples for creating Elastic Environments via Terraform☆26Updated last year
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆34Updated last month
- ☆22Updated 2 years ago
- Analyze Zeek IDS data with ksqlDB running on Confluent Platform via Docker on your laptop. Or spin up an arbitrary number of AWS hosts, …☆11Updated 3 years ago
- Config viewer and file editor for Splunk. Based on VSCode.☆31Updated last year
- Scripted inputs designed to address common use-cases in forwarder misconfigurations in a Splunk deployment☆35Updated 9 months ago
- These workflows are provided for sample usage, new submissions and updates from the community, and are NOT supported by IBM.☆50Updated last month
- ☆35Updated 3 years ago
- Splunk .conf18 - Dashboard Tips, Tricks and Hacks☆23Updated 6 years ago
- Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.☆82Updated 3 weeks ago
- SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)☆188Updated 4 years ago
- Fortinet products logs to Elasticsearch☆98Updated 9 months ago
- RBA is Splunk's method to aggregate low-fidelity security events as interesting observations tagged with security metadata to create high…☆54Updated last week
- Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform☆71Updated last year