Alternatives and similar repositories for spl-parser

Users that are interested in spl-parser are comparing it to the libraries listed below

• OTRF / OSSEM-CDM
  OSSEM Common Data Model
  ☆56Updated 3 years ago
• opencybersecurityalliance / firepit
  Firepit - STIX Columnar Storage
  ☆16Updated last year
• target / strelka-ui
  Strelka Web UI for File Submission and Analysis
  ☆72Updated 3 weeks ago
• chronicle / api-samples-python
  Python samples and utilities for Chronicle APIs
  ☆84Updated this week
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆37Updated 3 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆135Updated last year
• Shuffle / workflows
  Workflows for Shuffle
  ☆23Updated 2 years ago
• endgameinc / eql
  ☆222Updated last year
• vertexproject / synapse-quickstart
  Get started using Synapse Open-Source to start a Cortex and perform analysis within your area of expertise.
  ☆48Updated 3 years ago
• OpenCTI-Platform / datasets
  OpenCTI datasets
  ☆28Updated last year
• cyentific-rni / security-playbook-stix-misp-exchange
  This repository includes a mapping table and a reference process that allows converting between STIX 2.1 Course of Action objects that ma…
  ☆16Updated 3 years ago
• runreveal / sigmalite
  ☆50Updated 2 weeks ago
• Security-Onion-Solutions / securityonion-image
  ☆51Updated this week
• hashlookup / hashlookup-forensic-analyser
  Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…
  ☆126Updated 2 years ago
• mitre / stockpile
  A CALDERA plugin
  ☆77Updated last month
• Cluster25 / detection
  Threat Detection Rules (Snort/Sigma/Yara)
  ☆14Updated last year
• corelight / got_zoom
  A Zeek package that detects Zoom logins and meeting joins
  ☆12Updated 5 years ago
• MISP / misp-wireshark
  Lua plugin to extract data from Wireshark and convert it into MISP format
  ☆49Updated last year
• csirt-tooling-org / tooling-directory
  Tools used by CSIRT and especially in the scope of CNW
  ☆17Updated 3 months ago
• salspaugh / splparser
  Simple parser for Splunk Processing Language (SPL) written in Python.
  ☆35Updated 7 years ago
• oasis-tcs / cacao
  OASIS CACAO TC: Official repository for work of the CACAO TC https://github.com/oasis-tcs/cacao
  ☆30Updated last year
• grapl-security / grapl-analyzers
  Hosted analyzers built for Grapl
  ☆14Updated 2 years ago
• priamai / sigmatau
  An extension of the sigma standard to include security metrics.
  ☆15Updated 2 years ago
• atc-project / react-navigator
  Web app that provides basic navigation and annotation of ATT&CK matrices
  ☆17Updated 4 years ago
• oasis-open / cti-stix-generator
  OASIS Cyber Threat Intelligence (CTI) TC: A tool for generating STIX content for prototyping and testing. https://github.com/oasis-open/c…
  ☆42Updated last year
• opencybersecurityalliance / PACE
  Posture Attribute Collection and Evaluation
  ☆23Updated 2 years ago
• swimlane / pyattck-data
  This repository contains generated contextual data utilized by pyattck.
  ☆19Updated 7 months ago
• Kirtar22 / ATTACK-Threat_Intel
  Graph Representation of MITRE ATT&CK's CTI data
  ☆49Updated 5 years ago
• Loginsoft-LLC / threat-detection-rules
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆53Updated 3 years ago