Alternatives and similar repositories for python-humio

Users that are interested in python-humio are comparing it to the libraries listed below

• target / huntlib
  A Python library to help with some common threat hunting data analysis operations
  ☆143Updated 2 years ago
• spotify / terraform-google-grr
  A Terraform module for GRR: the distributed incident forensics and response framework
  ☆51Updated 5 years ago
• splunk / salo
  Synthetic Adversarial Log Objects: A Framework for synthentic log generation
  ☆85Updated last year
• philhagen / timeshift
  A python script to shift the timestamp on syslog data. Useful for forensicators combating time skew.
  ☆21Updated 3 years ago
• corelight / cve-2021-44228
  Log4j Exploit Detection Logic for Zeek
  ☆19Updated last year
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆77Updated 5 years ago
• chronicle / ingestion-scripts
  ☆36Updated 4 months ago
• carbonblack / cbapi-python
  Carbon Black API - Python language bindings
  ☆145Updated last year
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated 2 years ago
• carbonblack / cb-event-forwarder
  Subscribe to raw VMware Carbon Black EDR event feed and forward to another system, such as Splunk.
  ☆73Updated last year
• CrowdStrike / FDR
  Falcon Data Replicator
  ☆35Updated 3 weeks ago
• OktaSecurityLabs / sgt
  Osquery Mangement Server
  ☆114Updated 5 years ago
• CrowdStrike / caracara
  Developer enhancements (DX) for FalconPy, the CrowdStrike Python SDK
  ☆42Updated 3 weeks ago
• oasis-open / cti-stix-elevator
  OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON
  ☆52Updated last year
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆34Updated last month
• MattUebel / splunk_UF_hardening
  scripts to configure the Splunk Universal Forwarder in a locked down state
  ☆40Updated 6 years ago
• oasis-open / cti-pattern-validator
  OASIS TC Open Repository: Validate patterns used to express cyber observable content in STIX Indicators
  ☆29Updated last year
• activecm / docker-zeek
  Run zeek with zeekctl in docker
  ☆55Updated last year
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆54Updated 3 weeks ago
• eclecticiq / cabby
  TAXII client implementation from EclecticIQ
  ☆103Updated 4 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆29Updated 2 years ago
• PaloAltoNetworks / minemeld-core
  Engine of MineMeld
  ☆140Updated 2 years ago
• ThreatResponse / margaritashotgun
  Remote Memory Acquisition Tool
  ☆251Updated 5 years ago
• elastic / ecs-mapper
  Translate an ECS mapping CSV to starter pipelines for Beats, Elasticsearch or Logstash
  ☆54Updated 3 years ago
• ncsa / bro-doctor
  ☆24Updated 5 years ago
• chronicle / api-samples-python
  Python samples and utilities for Chronicle APIs
  ☆85Updated 2 weeks ago
• MISP / misp-cloud
  misp-cloud - Cloud-ready images of MISP
  ☆74Updated 3 years ago
• HASecuritySolutions / elastic_stack
  ☆34Updated 4 years ago
• Security-Onion-Solutions / securityonion-cloud
  ☆33Updated 3 years ago
• PaloAltoNetworks / minemeld-ansible
  Ansible playbook for installing MineMeld on Linux
  ☆48Updated 4 years ago