jorritfolmer / TA-dmarc
Add-on for ingesting DMARC aggregate reports into Splunk
☆15Updated last year
Related projects: ⓘ
- scripts to configure the Splunk Universal Forwarder in a locked down state☆39Updated 5 years ago
- Sysmon Splunk App☆46Updated 6 years ago
- ☆55Updated 2 years ago
- ☆13Updated this week
- Splunk csv to KVStore ES Threat Intel☆10Updated 8 years ago
- ☆14Updated 8 years ago
- Risk Based Alerting Supporting Add-On (SA) for Splunk☆44Updated 2 years ago
- Sunburst IOCs for Splunk Ingest☆18Updated 3 years ago
- Splunk app for visualization of DMARC RUA mails☆14Updated 4 months ago
- This repo represents work the Phantom Community collaborates on to build apps and learn.☆12Updated 3 years ago
- ☆13Updated this week
- Allows for MAC address to vendor mapping in Splunk☆16Updated 11 months ago
- Ansible playbook for installing MineMeld on Linux☆48Updated 3 years ago
- Cisco eStreamer client☆25Updated 2 years ago
- Volatility plugins developed and maintained by the community☆21Updated 6 years ago
- ☆48Updated 4 years ago
- Allows to pull asset and identity data into Splunk app for Enterprise Security from LDAP and other sources☆27Updated 6 years ago
- This technology adapter add-on fetches emails for Splunk to index from mailboxes using either POP3 or IMAP, with or without SSL.☆9Updated 3 years ago
- Connector for pulling and converting STIX information from TAXII Service Providers into CB Feeds.☆15Updated 2 years ago
- Carbon Black Feeds☆70Updated last year
- MineMeld nodes for MISP☆18Updated 7 months ago
- InvestigationPlaybookSpec☆72Updated 6 years ago
- Deploy and maintain Symon through the Splunk Deployment Sever☆31Updated 4 years ago
- A Splunk app with saved reports derived from Sigma rules☆72Updated 6 years ago
- Integrate Zeek with Alienvault OTX☆24Updated 4 years ago
- ☆39Updated this week
- SELinux Policy for Splunk☆55Updated 5 years ago
- Splunk App to assist Sysmon Threat Hunting☆38Updated 7 years ago
- Powering Up Incident Response with Power-Response☆62Updated 4 years ago
- CB API scripts for IR, administration, etc.☆33Updated 5 years ago