Alternatives and similar repositories for spl-parser

Users that are interested in spl-parser are comparing it to the libraries listed below

• opencybersecurityalliance / firepit
  Firepit - STIX Columnar Storage
  ☆16Updated last year
• OTRF / OSSEM-CDM
  OSSEM Common Data Model
  ☆56Updated 3 years ago
• target / strelka-ui
  Strelka Web UI for File Submission and Analysis
  ☆72Updated last week
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆37Updated 3 years ago
• chronicle / api-samples-python
  Python samples and utilities for Chronicle APIs
  ☆85Updated 2 weeks ago
• atc-project / react-navigator
  Web app that provides basic navigation and annotation of ATT&CK matrices
  ☆17Updated 4 years ago
• corelight / got_zoom
  A Zeek package that detects Zoom logins and meeting joins
  ☆12Updated 5 years ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆86Updated last month
• mitre / atomic
  A MITRE Caldera plugin
  ☆46Updated 3 weeks ago
• runreveal / sigmalite
  ☆50Updated last month
• Shuffle / workflows
  Workflows for Shuffle
  ☆24Updated 3 years ago
• oasis-tcs / cacao
  OASIS CACAO TC: Official repository for work of the CACAO TC https://github.com/oasis-tcs/cacao
  ☆30Updated last year
• splunk / salo
  Synthetic Adversarial Log Objects: A Framework for synthentic log generation
  ☆85Updated last year
• OTRF / openhunt
  ☆35Updated 4 years ago
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆135Updated last year
• hashlookup / hashlookup-forensic-analyser
  Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…
  ☆125Updated 2 years ago
• endgameinc / eql
  ☆223Updated 2 years ago
• mitre-attack / attack-data-model
  ATT&CK Data Model (ADM): A TypeScript library for structured interaction with MITRE ATT&CK datasets. Uses Zod schemas, TypeScript types, …
  ☆43Updated last week
• JHUAPL / Low-Regret-Methodology
  ☆28Updated 4 years ago
• cyentific-rni / security-playbook-stix-misp-exchange
  This repository includes a mapping table and a reference process that allows converting between STIX 2.1 Course of Action objects that ma…
  ☆16Updated 3 years ago
• casework / CASE
  Cyber-investigation Analysis Standard Expression (CASE) Ontology
  ☆71Updated last month
• mitre / stockpile
  A CALDERA plugin
  ☆79Updated 2 weeks ago
• target / huntlib
  A Python library to help with some common threat hunting data analysis operations
  ☆143Updated 2 years ago
• socprime / socprime_sigma
  List of sigma for a variety of threats for multiple log sources.
  ☆13Updated 6 years ago
• grapl-security / grapl-analyzers
  Hosted analyzers built for Grapl
  ☆14Updated 2 years ago
• priamai / sigmatau
  An extension of the sigma standard to include security metrics.
  ☆15Updated 2 years ago
• cyentific-rni / stix2.1-coa-playbook-extension
  A STIX 2.1 Extension Definition for the Course of Action (COA) object type. The nested property extension allows a COA to share machine-r…
  ☆23Updated last year
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆77Updated 5 years ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆22Updated last year
• sandialabs / gait
  Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies
  ☆37Updated last month