hire-vladimir / data_governance

Related projects: ⓘ

• hire-vladimir / SA-NetOps
  Allows for MAC address to vendor mapping in Splunk
  ☆16Updated 11 months ago
• elastic / security-research
  The Elastic Security Research team produces public-facing content, in the way of summary blogs, detailed releases, and artifacts; articul…
  ☆9Updated 2 years ago
• hire-vladimir / SA-syslog_collection
  Monitor syslog collection infrastructure & offer syslog configuration templates.
  ☆23Updated 6 years ago
• splunk / splunk-add-on-jira-alerts
  Splunk custom alert action for Atlassian JIRA
  ☆18Updated 5 years ago
• georgestarcher / Splunk-ESIntel-KVStore
  Splunk csv to KVStore ES Threat Intel
  ☆10Updated 8 years ago
• MISP / best-practices-in-threat-intelligence
  Best practices in threat intelligence
  ☆46Updated last year
• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆45Updated 2 months ago
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆76Updated 3 years ago
• splunk / cloud-datamodel-security-research
  ☆32Updated this week
• rkovar / splunk-hunting-helpers
  ☆55Updated 2 years ago
• doksu / TA-jsontools
  JSON Tools Technology Add-On for Splunk
  ☆10Updated 3 years ago
• vz-risk / Verum
  Implementation of Context-Graph algorithms for graph enrichment and querying.
  ☆24Updated 9 years ago
• vmware-archive / cb-reporting
  Report Generation from the Carbon Black REST API
  ☆15Updated 2 years ago
• hosom / bro-otx
  Integrate Zeek with Alienvault OTX
  ☆24Updated 4 years ago
• z3ndrag0n / forensicator-fate
  Bringing DevOps to Forensics
  ☆34Updated 9 years ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆21Updated 3 weeks ago
• hire-vladimir / SA-cim_vladiator
  Data validator agains Splunk Common Information Model (CIM)
  ☆74Updated 5 months ago
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆33Updated 3 weeks ago
• SMAPPER / docker_domain_stats
  Contains dockerfile to build domain_stats.py as an image
  ☆11Updated 7 years ago
• ChrisYounger / config_explorer
  Config viewer and file editor for Splunk. Based on VSCode.
  ☆28Updated 4 months ago
• eCrimeLabs / MISP2CbR
  Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.
  ☆19Updated 2 years ago
• cerner / cerner_splunk
  Cerner's Splunk Cookbook
  ☆31Updated last year
• splunkalicious / PII_Tools
  ☆8Updated 3 years ago
• rocknsm / rock-scripts
  Bro scripts for the ROCK platform. http://rocknsm.io
  ☆33Updated last year
• corelight / got_zoom
  A Zeek package that detects Zoom logins and meeting joins
  ☆11Updated 4 years ago
• atc-project / atc-mitigation
  Actionable analytics designed to combat threats based on MITRE's ATT&CK.
  ☆21Updated 5 years ago
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆32Updated last year
• PaloAltoNetworks / minemeld-misp
  MineMeld nodes for MISP
  ☆18Updated 7 months ago
• georgestarcher / Splunk-Alert
  Example Splunk Alert Scripts
  ☆20Updated 9 years ago
• Loginsoft-Research / detection-rules
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆49Updated 2 years ago