Alternatives and similar repositories for python-humio:

Users that are interested in python-humio are comparing it to the libraries listed below

• CrowdStrike / FDR
  Falcon Data Replicator
  ☆31Updated 3 months ago
• CrowdStrike / falcon-integration-gateway
  Falcon Integration Gateway (FIG)
  ☆18Updated last month
• threat-punter / detection-as-code-example
  A POC to implement Detection-as-Code with Terraform and Sumo Logic.
  ☆27Updated last year
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆53Updated 2 weeks ago
• panther-labs / tutorials
  Cloud security tutorials and best practices
  ☆38Updated 2 years ago
• 0xdefendA / defenda-data-lake
  defendA Data Lake. A firehose pipeline to athena providing enrichment and normalization for security events
  ☆16Updated last year
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆34Updated 2 months ago
• chronicle / api-samples-python
  Python samples and utilities for Chronicle APIs
  ☆81Updated 2 weeks ago
• CrowdStrike / caracara
  Developer enhancements (DX) for FalconPy, the CrowdStrike Python SDK
  ☆39Updated this week
• OktaSecurityLabs / sgt
  Osquery Mangement Server
  ☆113Updated 4 years ago
• runreveal / sigmalite
  ☆42Updated 3 weeks ago
• target / huntlib
  A Python library to help with some common threat hunting data analysis operations
  ☆142Updated last year
• carta / krang
  Knowledge Report Alert & Normalization Generator
  ☆27Updated last year
• Exporttool / exporttool
  This is a python script that can be run on each Splunk Indexer for the purpose of exporting historical bucket data (raw events + metadata…
  ☆11Updated last year
• aw-mfe / gsuite2mfe
  Send events from G Suite to McAfee SIEM
  ☆13Updated 5 years ago
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆77Updated 4 years ago
• splunk / salo
  Synthetic Adversarial Log Objects: A Framework for synthentic log generation
  ☆81Updated last year
• splunk / attack_range_cloud
  Attack Range to test detection against nativel serverless cloud services and environments
  ☆35Updated 3 years ago
• corelight / Corelight-Ansible-Roles
  Corelight-Ansible-Roles are a collection of Ansible Roles and playbooks that install, configure, run and manage a variety of Corelight, S…
  ☆16Updated 3 years ago
• gyrospectre / squyre
  Security Alert Decoration
  ☆27Updated 2 weeks ago
• mikermcneil / fleet-osquery-in-a-box
  Simple Docker-based quickstart for osquery, Fleet, and ELK stack
  ☆63Updated last year
• philhagen / timeshift
  A python script to shift the timestamp on syslog data. Useful for forensicators combating time skew.
  ☆20Updated 2 years ago
• criblio / criblvision
  Splunk App for Cribl Stream and Edge Observability
  ☆25Updated 3 weeks ago
• ocsf / examples
  This repo contains example of raw event examples and possible translations to the OCSF schema.
  ☆36Updated last week
• chronicle / ingestion-scripts
  ☆30Updated 3 weeks ago
• carbonblack / cb-event-forwarder
  Subscribe to raw VMware Carbon Black EDR event feed and forward to another system, such as Splunk.
  ☆73Updated 11 months ago
• corelight / got_zoom
  A Zeek package that detects Zoom logins and meeting joins
  ☆12Updated 4 years ago
• kolide / docker-osquery
  Dockerfiles for containerized osquery
  ☆13Updated 7 years ago
• oasis-open / cti-pattern-validator
  OASIS TC Open Repository: Validate patterns used to express cyber observable content in STIX Indicators
  ☆27Updated 11 months ago
• blookot / rsa2elk
  Converts Netwitness log parser configuration to Logstash configuration
  ☆20Updated 4 years ago