jay-johnson / spylunkingLinks
Drill down into your python logs using JSON logs stored in Splunk - supports sending over TCP or the Splunk HEC REST API handlers (using threads or multiprocessing) - includes a pre-configured Splunk sandbox in a docker container
☆12Updated 2 years ago
Alternatives and similar repositories for spylunking
Users that are interested in spylunking are comparing it to the libraries listed below
Sorting:
- Serverless, real-time, ClamAV+Yara scanning for your S3 Buckets☆31Updated last week
- Data Governance app for Splunk☆12Updated last year
- Materials for the BSides NoVA/Charleston 2018 Bro Workshop☆14Updated 3 weeks ago
- ☆10Updated 4 years ago
- Build Automated Machine Images for MISP☆28Updated 2 years ago
- Following repository contains source codes used in my two Books.☆11Updated 9 years ago
- ☆25Updated 6 years ago
- For use in our Tenable.IO to AWS Security Hub integration☆28Updated 3 weeks ago
- ☆30Updated 6 years ago
- Splunk scripted input for opening a backconnect shell on a remote forwarder☆45Updated 4 years ago
- Python module for evaluation of AWS account best practices around incident handling readieness.☆55Updated 5 years ago
- AWS infrastructure for Cyber Hygiene and BOD 18-01 scanning☆22Updated this week
- Active Response plugin. Osquery to execute wazuh/ossec active response plugins. You can write your own plugins, easy to plug☆10Updated 5 years ago
- Python scripts to download, parse, and enrich scans.io study data and load into Splunk for research, threat intelligence gathering, and s…☆19Updated last week
- Repository for lab materials for the Advanced Cloud Security and Applied DevSecOps training class.☆11Updated 5 years ago
- A few quick recipes for those that do not have much time during the day☆22Updated 7 months ago
- Manage GuardDuty At Enterprise Scale☆22Updated 4 years ago
- Python tool build around GreyNoise's alpha/public API☆11Updated 6 years ago
- The official Prelude-Correlator GitHub mirror of https://www.prelude-siem.org/projects/prelude-correlator/repository☆10Updated 4 years ago
- Serverless function to automate enforcement of Multi-Factor Authentication (MFA) to all AWS IAM users with access to AWS Management Conso…☆13Updated 6 years ago
- Python bindings for Yeti's API☆18Updated last year
- Move frozen buckets to AWS S3 (and ultimately Glacier) for long term storage☆12Updated 7 years ago
- Command-line tool to format and syntax highlight Suricata rules☆13Updated 5 years ago
- Base class for Jupyter Data Integrations☆11Updated 2 weeks ago
- Yara Scanner For IMAP Feeds and saved Streams☆28Updated 5 years ago
- REST API test utility☆22Updated 5 years ago
- A collaborative platform for creating, editing and sharing JSON objects.☆73Updated this week
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Updated 5 years ago
- ☆83Updated 5 years ago
- Graphistry admin docs: launch, configure, use, & debug☆26Updated 3 months ago