kotlaluk / spl-parser
Parser for Splunk's Search Processing Language (SPL) syntax highlighting
☆19Updated 5 years ago
Alternatives and similar repositories for spl-parser:
Users that are interested in spl-parser are comparing it to the libraries listed below
- OSSEM Common Data Model☆55Updated 2 years ago
- Simple parser for Splunk Processing Language (SPL) written in Python.☆35Updated 6 years ago
- Firepit - STIX Columnar Storage☆16Updated 10 months ago
- A Zeek package that detects Zoom logins and meeting joins☆12Updated 5 years ago
- Strelka Web UI for File Submission and Analysis☆68Updated this week
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Updated 5 years ago
- Convert Sigma Rules to different formats☆11Updated 8 months ago
- Threat Detection Rules (Snort/Sigma/Yara)☆13Updated last year
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆35Updated 2 years ago
- ☆33Updated 3 years ago
- CyCAT.org taxonomies☆14Updated 3 years ago
- Zeek support for Community ID flow hashing.☆35Updated last year
- Specifications used in the MISP project including MISP core format☆51Updated 3 months ago
- Kestrel Jupyter Notebook Kernel☆9Updated last year
- Threat Detection & Anomaly Detection rules for popular open-source components☆51Updated 2 years ago
- Hosted analyzers built for Grapl☆13Updated 2 years ago
- Python samples and utilities for Chronicle APIs☆81Updated last month
- Visual Studio Code Extension for Splunk☆90Updated 3 weeks ago
- Custom Splunk search command to reconstruct a pstree from Sysmon process creation events (EventCode 1)☆23Updated 2 years ago
- Graph Representation of MITRE ATT&CK's CTI data☆48Updated 5 years ago
- Contains research.splunk.com site code☆11Updated last year
- The official Prelude-Correlator GitHub mirror of https://www.prelude-siem.org/projects/prelude-correlator/repository☆10Updated 4 years ago
- ☆20Updated 4 years ago
- STIX 2.1 Data Modeling Tool☆27Updated 9 months ago
- Web app that provides basic navigation and annotation of ATT&CK matrices☆16Updated 4 years ago
- pySigma Cookiecutter backend template☆24Updated last month
- CARET - A tool for viewing cyber analytic relationships☆54Updated 5 years ago
- Collection of Dashboards for Threat Hunting and more!☆67Updated 4 years ago
- This is a python script that can be run on each Splunk Indexer for the purpose of exporting historical bucket data (raw events + metadata…☆11Updated last year
- A few quick recipes for those that do not have much time during the day☆22Updated 6 months ago