humio / python-humio

Related projects: ⓘ

• carbonblack / cbc-syslog
  Syslog Connector for the Carbon Black Cloud
  ☆28Updated 2 months ago
• nick-hills / splunkDeepfreeze
  Move frozen buckets to AWS S3 (and ultimately Glacier) for long term storage
  ☆12Updated 6 years ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆51Updated 2 months ago
• philhagen / timeshift
  A python script to shift the timestamp on syslog data. Useful for forensicators combating time skew.
  ☆19Updated 2 years ago
• juju4 / ansible-zeek
  setup zeek, previously Bro IDS
  ☆17Updated last month
• carbonblack / cb-event-forwarder
  Subscribe to raw VMware Carbon Black EDR event feed and forward to another system, such as Splunk.
  ☆73Updated 4 months ago
• spotify / terraform-google-grr
  A Terraform module for GRR: the distributed incident forensics and response framework
  ☆51Updated 4 years ago
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated last year
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆33Updated 3 weeks ago
• DavidJBianco / pycef
  A very simple CEF parser for Python
  ☆27Updated 4 years ago
• opendxl / opendxl-environment
  Pre-configured environment that supports the development and running of OpenDXL solutions
  ☆13Updated 3 years ago
• carbonblack / cbapi-python
  Carbon Black API - Python language bindings
  ☆147Updated 3 weeks ago
• carbonblack / cb-taxii-connector
  Connector for pulling and converting STIX information from TAXII Service Providers into CB Feeds.
  ☆15Updated 2 years ago
• joelwking / Phantom-Cyber
  Apps for Splunk Phantom security automation | Cisco Meraki | Ansible Tower | F5 | A10
  ☆25Updated 4 years ago
• cyphonmdr / cyclops
  ☆38Updated this week
• splunk / splunk-add-on-jira-alerts
  Splunk custom alert action for Atlassian JIRA
  ☆18Updated 5 years ago
• corelight / json-streaming-logs
  Bro script package to create JSON formatted logs to stream into data analysis systems.
  ☆27Updated 9 months ago
• splunk / splunk-ref-pas-code
  Splunk Reference App - Pluggable Auditing System (PAS) - Code Repo
  ☆22Updated 5 years ago
• 0x4D31 / sqhunter
  ☆66Updated this week
• zach-taylor / splunk_handler
  Python logging handler for sending logs to Splunk Enterprise
  ☆54Updated 4 months ago
• JustinAzoff / splunk-scripts
  some scripts for splunk
  ☆51Updated 4 years ago
• criblio / cribl-demo
  ☆27Updated this week
• 9b / netinfo
  Simple IP enrichment service and API wrapping PyASN and MaxMind GeoIP.
  ☆72Updated last year
• ThreatResponse / ThreatPrep
  Python module for evaluation of AWS account best practices around incident handling readieness.
  ☆54Updated 4 years ago
• ThreatConnect-Inc / threatconnect-python
  ☆22Updated this week
• rocknsm / rock-scripts
  Bro scripts for the ROCK platform. http://rocknsm.io
  ☆33Updated last year
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆76Updated 3 years ago
• OktaSecurityLabs / sgt
  Osquery Mangement Server
  ☆114Updated 4 years ago
• 0xdefendA / defenda-data-lake
  defendA Data Lake. A firehose pipeline to athena providing enrichment and normalization for security events
  ☆16Updated last year