Alternatives and similar repositories for python-humio

Users that are interested in python-humio are comparing it to the libraries listed below

• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆54Updated last week
• philhagen / timeshift
  A python script to shift the timestamp on syslog data. Useful for forensicators combating time skew.
  ☆21Updated 3 years ago
• target / huntlib
  A Python library to help with some common threat hunting data analysis operations
  ☆143Updated 2 years ago
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated 2 years ago
• jconwell / fqdn_parser
  fqdn_parser (Fully Qualified Domain Name Parser) is a library for parsing FQDNs into their component parts, as well as providing addition…
  ☆27Updated last year
• blookot / rsa2elk
  Converts Netwitness log parser configuration to Logstash configuration
  ☆20Updated 4 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆29Updated 2 years ago
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆77Updated 4 years ago
• PaloAltoNetworks / minemeld-ansible
  Ansible playbook for installing MineMeld on Linux
  ☆48Updated 4 years ago
• splunk / salo
  Synthetic Adversarial Log Objects: A Framework for synthentic log generation
  ☆84Updated last year
• OktaSecurityLabs / sgt
  Osquery Mangement Server
  ☆114Updated 5 years ago
• PaloAltoNetworks / minemeld-docker
  Official Palo Alto Networks MineMeld docker
  ☆17Updated 5 years ago
• oasis-open / cti-stix-elevator
  OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON
  ☆51Updated last year
• sensoroni / sensoroni
  Web-based sensor management suite
  ☆20Updated 2 years ago
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆34Updated 2 months ago
• chronicle / api-samples-python
  Python samples and utilities for Chronicle APIs
  ☆83Updated 2 months ago
• chronicle / ingestion-scripts
  ☆35Updated 2 months ago
• carbonblack / cb-event-forwarder
  Subscribe to raw VMware Carbon Black EDR event feed and forward to another system, such as Splunk.
  ☆73Updated last year
• opendxl / opendxl-environment
  Pre-configured environment that supports the development and running of OpenDXL solutions
  ☆13Updated 4 years ago
• oasis-open / cti-pattern-validator
  OASIS TC Open Repository: Validate patterns used to express cyber observable content in STIX Indicators
  ☆28Updated last year
• clausing / scripts
  ☆67Updated this week
• CrowdStrike / falcon-integration-gateway
  Falcon Integration Gateway (FIG)
  ☆20Updated this week
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆134Updated last year
• eclecticiq / cabby
  TAXII client implementation from EclecticIQ
  ☆102Updated 4 years ago
• aholzel / SA-dmarc
  Splunk app for visualization of DMARC RUA mails
  ☆14Updated last year
• counteractive / o365beat
  Elastic Beat for fetching and shipping Office 365 audit events
  ☆67Updated 4 years ago
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆36Updated 2 years ago
• PaloAltoNetworks / minemeld-core
  Engine of MineMeld
  ☆140Updated 2 years ago
• threat-punter / detection-as-code-example
  A POC to implement Detection-as-Code with Terraform and Sumo Logic.
  ☆29Updated 2 years ago
• runreveal / sigmalite
  ☆47Updated 5 months ago