hire-vladimir / data_governance
Data Governance app for Splunk
☆12Updated 11 months ago
Related projects: ⓘ
- Allows for MAC address to vendor mapping in Splunk☆16Updated 11 months ago
- The Elastic Security Research team produces public-facing content, in the way of summary blogs, detailed releases, and artifacts; articul…☆9Updated 2 years ago
- Monitor syslog collection infrastructure & offer syslog configuration templates.☆23Updated 6 years ago
- Splunk custom alert action for Atlassian JIRA☆18Updated 5 years ago
- Splunk csv to KVStore ES Threat Intel☆10Updated 8 years ago
- Best practices in threat intelligence☆46Updated last year
- Specifications used in the MISP project including MISP core format☆45Updated 2 months ago
- A collection of notebooks built for defensive and offensive operations.☆76Updated 3 years ago
- ☆32Updated this week
- ☆55Updated 2 years ago
- JSON Tools Technology Add-On for Splunk☆10Updated 3 years ago
- Implementation of Context-Graph algorithms for graph enrichment and querying.☆24Updated 9 years ago
- Report Generation from the Carbon Black REST API☆15Updated 2 years ago
- Integrate Zeek with Alienvault OTX☆24Updated 4 years ago
- Bringing DevOps to Forensics☆34Updated 9 years ago
- A few quick recipes for those that do not have much time during the day☆21Updated 3 weeks ago
- Data validator agains Splunk Common Information Model (CIM)☆74Updated 5 months ago
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆33Updated 3 weeks ago
- Contains dockerfile to build domain_stats.py as an image☆11Updated 7 years ago
- Config viewer and file editor for Splunk. Based on VSCode.☆28Updated 4 months ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆19Updated 2 years ago
- Cerner's Splunk Cookbook☆31Updated last year
- ☆8Updated 3 years ago
- Bro scripts for the ROCK platform. http://rocknsm.io☆33Updated last year
- A Zeek package that detects Zoom logins and meeting joins☆11Updated 4 years ago
- Actionable analytics designed to combat threats based on MITRE's ATT&CK.☆21Updated 5 years ago
- Zeek support for Community ID flow hashing.☆32Updated last year
- MineMeld nodes for MISP☆18Updated 7 months ago
- Example Splunk Alert Scripts☆20Updated 9 years ago
- Threat Detection & Anomaly Detection rules for popular open-source components☆49Updated 2 years ago