Alternatives and similar repositories for spl-parser

Users that are interested in spl-parser are comparing it to the libraries listed below

• OTRF / OSSEM-CDM
  OSSEM Common Data Model
  ☆56Updated 3 years ago
• corelight / got_zoom
  A Zeek package that detects Zoom logins and meeting joins
  ☆12Updated 5 years ago
• opencybersecurityalliance / firepit
  Firepit - STIX Columnar Storage
  ☆17Updated last year
• grapl-security / grapl-analyzers
  Hosted analyzers built for Grapl
  ☆14Updated 2 years ago
• salspaugh / splparser
  Simple parser for Splunk Processing Language (SPL) written in Python.
  ☆35Updated 7 years ago
• chronicle / api-samples-python
  Python samples and utilities for Chronicle APIs
  ☆88Updated last month
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆38Updated 3 years ago
• runreveal / sigmalite
  ☆52Updated 2 months ago
• Xyrodileas / misp-k8s
  Automated deployment of MISP and MISP-Dashboard via K8S and AWS
  ☆19Updated 6 years ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆90Updated 2 weeks ago
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆136Updated last year
• endgameinc / eql
  ☆225Updated 3 weeks ago
• target / huntlib
  A Python library to help with some common threat hunting data analysis operations
  ☆143Updated 2 years ago
• cyentific-rni / security-playbook-stix-misp-exchange
  This repository includes a mapping table and a reference process that allows converting between STIX 2.1 Course of Action objects that ma…
  ☆16Updated 3 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• splunk / salo
  Synthetic Adversarial Log Objects: A Framework for synthentic log generation
  ☆85Updated last year
• opencybersecurityalliance / PACE
  Posture Attribute Collection and Evaluation
  ☆24Updated 2 years ago
• idaholab / STIG
  Structured Threat Intelligence Graph
  ☆97Updated last month
• oasis-open / cti-stix-elevator
  OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON
  ☆52Updated last year
• OpenCTI-Platform / datasets
  OpenCTI datasets
  ☆29Updated 3 weeks ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆55Updated last year
• mitre / caret
  CARET - A tool for viewing cyber analytic relationships
  ☆55Updated 5 years ago
• JHUAPL / Low-Regret-Methodology
  ☆29Updated 4 years ago
• sandialabs / gait
  Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies
  ☆37Updated 3 months ago
• mitre / stockpile
  A CALDERA plugin
  ☆79Updated last month
• Shuffle / workflows
  Workflows for Shuffle
  ☆24Updated 3 years ago
• hashlookup / hashlookup-forensic-analyser
  Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…
  ☆127Updated 2 years ago
• m-chrome / py-suricataparser
  Pure python parser for Snort/Suricata rules.
  ☆33Updated last year
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated last year
• Ascend-Technologies / OpenCTI-HELM-CHART
  ☆15Updated 2 years ago