jay-johnson / spylunking
Drill down into your python logs using JSON logs stored in Splunk - supports sending over TCP or the Splunk HEC REST API handlers (using threads or multiprocessing) - includes a pre-configured Splunk sandbox in a docker container
☆12Updated last year
Related projects: ⓘ
- Python module for evaluation of AWS account best practices around incident handling readieness.☆54Updated 4 years ago
- Serverless, real-time, ClamAV+Yara scanning for your S3 Buckets☆31Updated 3 months ago
- Move frozen buckets to AWS S3 (and ultimately Glacier) for long term storage☆12Updated 6 years ago
- ☆38Updated this week
- This repo contains a list of aws security related talks.☆12Updated 6 years ago
- Graphistry admin docs: launch, configure, use, & debug☆22Updated 3 weeks ago
- ☆19Updated 5 years ago
- ☆24Updated 5 years ago
- ☆66Updated this week
- Python scripts to download, parse, and enrich scans.io study data and load into Splunk for research, threat intelligence gathering, and s…☆19Updated 2 weeks ago
- Repository for lab materials for the Advanced Cloud Security and Applied DevSecOps training class.☆11Updated 5 years ago
- Manage GuardDuty At Enterprise Scale☆22Updated 4 years ago
- Splunking Crime using Splunk Machine Learning Toolkit☆11Updated 5 years ago
- Materials for the BSides NoVA/Charleston 2018 Bro Workshop☆14Updated last year
- ☆82Updated 4 years ago
- Core incident handling plugins for aws_ir cli, incident pony, and more.☆21Updated 6 years ago
- ☆25Updated this week
- ☆27Updated this week
- Python logging handler for sending logs to Splunk Enterprise☆54Updated 4 months ago
- All Day DevOps - Automated Infrastructure Security Monitoring and Defence (ELK + AWS Lambda)☆22Updated 7 years ago
- Following repository contains source codes used in my two Books.☆10Updated 8 years ago
- S3Insights is a platform for efficiently deriving security insights about S3 data through metadata analysis☆11Updated 2 weeks ago
- ☆19Updated 11 months ago
- Send events from G Suite to McAfee SIEM☆13Updated 5 years ago
- A few quick recipes for those that do not have much time during the day☆21Updated 3 weeks ago
- Smart piping of command output to email for alerting.☆20Updated 4 years ago
- Tools for AWS forensics☆64Updated 8 years ago
- A tool for testing continuous integration (CI) or continuous delivery (CD) system security☆23Updated 11 years ago
- Application Security Workflow Automation using Docker and Kubernetes☆22Updated last year
- Reapsaw is a continuous security devsecops tool, which helps in enabling security into CI/CD Pipeline. It supports coverage for multiple …☆42Updated 3 years ago