Alternatives and similar repositories for spl-parser

Users that are interested in spl-parser are comparing it to the libraries listed below

• opencybersecurityalliance / firepit
  Firepit - STIX Columnar Storage
  ☆17Updated last year
• chronicle / api-samples-python
  Python samples and utilities for Chronicle APIs
  ☆88Updated last month
• opencybersecurityalliance / PACE
  Posture Attribute Collection and Evaluation
  ☆24Updated 2 years ago
• OTRF / OSSEM-CDM
  OSSEM Common Data Model
  ☆56Updated 3 years ago
• corelight / got_zoom
  A Zeek package that detects Zoom logins and meeting joins
  ☆12Updated 5 years ago
• target / strelka-ui
  Strelka Web UI for File Submission and Analysis
  ☆74Updated 3 weeks ago
• endgameinc / eql
  ☆225Updated last month
• cyentific-rni / stix2.1-coa-playbook-extension
  A STIX 2.1 Extension Definition for the Course of Action (COA) object type. The nested property extension allows a COA to share machine-r…
  ☆23Updated 2 years ago
• runreveal / sigmalite
  ☆52Updated 2 weeks ago
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆136Updated last year
• opensearch-project / security-analytics
  Security Analytics enables users for detecting security threats on their security event log data. It will also allow them to modify/tailo…
  ☆93Updated last week
• JupiterOne / insights-dashboards
  A library of data visualization dashboard templates that can be imported into JupiterOne.
  ☆18Updated 3 weeks ago
• grapl-security / grapl-analyzers
  Hosted analyzers built for Grapl
  ☆14Updated 3 years ago
• mitre-atlas / atlas-navigator-data
  Scripts and outputs for ATLAS data in STIX JSON and ATT&CK Navigator layer formats
  ☆22Updated last week
• oasis-open / cti-stix-generator
  OASIS Cyber Threat Intelligence (CTI) TC: A tool for generating STIX content for prototyping and testing. https://github.com/oasis-open/c…
  ☆42Updated last year
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆38Updated 3 years ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆90Updated last month
• OpenCTI-Platform / datasets
  OpenCTI datasets
  ☆29Updated last month
• oasis-tcs / cacao
  OASIS CACAO TC: Official repository for work of the CACAO TC https://github.com/oasis-tcs/cacao
  ☆31Updated last year
• salspaugh / splparser
  Simple parser for Splunk Processing Language (SPL) written in Python.
  ☆35Updated 7 years ago
• cyentific-rni / security-playbook-stix-misp-exchange
  This repository includes a mapping table and a reference process that allows converting between STIX 2.1 Course of Action objects that ma…
  ☆16Updated 3 years ago
• oasis-open / csaf-parser
  OASIS TC Open Repository: CSAF Parser tool for parsing and checking the syntax of the Common Vulnerability Reporting Framework (CVRF) con…
  ☆23Updated 3 years ago
• target / huntlib
  A Python library to help with some common threat hunting data analysis operations
  ☆143Updated 2 years ago
• idaholab / STIG
  Structured Threat Intelligence Graph
  ☆98Updated 2 weeks ago
• Xyrodileas / misp-k8s
  Automated deployment of MISP and MISP-Dashboard via K8S and AWS
  ☆19Updated 6 years ago
• anelshaer / Remote-Linux-Triage-Collection-using-OSquery
  Remotely collect linux live forensics artifacts.
  ☆13Updated 3 years ago
• splunk / salo
  Synthetic Adversarial Log Objects: A Framework for synthentic log generation
  ☆85Updated last year
• FoxIO-LLC / LogSlash
  A standard for reducing log volume without sacrificing analytical capability
  ☆213Updated 10 months ago
• center-for-threat-informed-defense / defending-iaas-with-attack
  Defending IaaS with ATT&CK is a project to create a collection of ATT&CK techniques relevant to a Linux IaaS environment, as well as a me…
  ☆14Updated 7 months ago