Alternatives and similar repositories for kafka-sigma-streams

Users that are interested in kafka-sigma-streams are comparing it to the libraries listed below

• berthayes / cp-zeek
  Analyze Zeek IDS data with ksqlDB running on Confluent Platform via Docker on your laptop. Or spin up an arbitrary number of AWS hosts, …
  ☆11Updated 3 years ago
• JohnnyMirza / confluent_splunk_demo
  Confluent s2s Demo
  ☆10Updated 2 years ago
• wlaforest / KSQLGeo
  Geospatial UDFs for KSQL
  ☆22Updated 3 years ago
• aacgood / Cortex-Analyzers
  A collection of Cortex Analyzers and Responders for TheHive/Cortex
  ☆13Updated 5 years ago
• humio / security_monitoring
  ☆41Updated 2 years ago
• eCrimeLabs / MISP2CbR
  Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.
  ☆20Updated 3 years ago
• LDO-CERT / mans_to_es
  Parses the FireEye HX .mans triage collections and sends them to ElasticSearch
  ☆14Updated 2 years ago
• ReconInfoSec / sigma-to-elastalert
  Ansible playbook to convert Sigma rules to ElastAlert rules
  ☆10Updated 4 years ago
• splunk / kafka-connect-splunk
  Kafka connector for Splunk
  ☆93Updated 10 months ago
• NorthfieldCreative / splunk-crowdstrike-event-queries
  ☆14Updated 5 months ago
• dstaulcu / SplunkTools
  A collection of scripts useful in management of Splunk deployment
  ☆20Updated 10 months ago
• HKcyberstark / wazuh-ecs
  Parse wazuh[HIDS] alerts into ECS mapping using Filebeat
  ☆27Updated 4 years ago
• inodee / spl-to-kql
  The idea is simply to save some quick notes that will make it easier for Splunk users to leverage KQL (Kusto), especially giving projects…
  ☆43Updated 4 years ago
• bentleymi / ChatGPT-4-Splunk
  Splunk TA for sending completion requests to ChatGPT
  ☆25Updated last year
• DerekKing / splunk_dns_analytics
  Splunk Searches and Dashboards for DNS Threat Hunting
  ☆10Updated 7 years ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆55Updated 11 months ago
• splunk / TA-misp_es
  MISP to Splunk Enterprise Security Theat Intelligence Framework Integration
  ☆13Updated last year
• splunk / TA-osquery
  A Splunk technology add-on for osquery
  ☆14Updated 4 years ago
• apger / SA-RBA
  Risk Based Alerting Supporting Add-On (SA) for Splunk
  ☆45Updated 3 years ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 6 months ago
• codingWithJimmy / SplunkForwarderRepairKit
  Scripted inputs designed to address common use-cases in forwarder misconfigurations in a Splunk deployment
  ☆35Updated 9 months ago
• SecurityRiskAdvisors / dredd
  Automated detection rule analysis utility
  ☆29Updated 2 years ago
• S3COPS / ArcSight-Sysmon-FlexConnector
  Microfocus ArcSight FlexConnector for Microsoft Sysmon tool
  ☆19Updated 4 years ago
• jokezone / Update-Sysmon
  This repository was created to aid in the deployment/maintenance of the Sysmon service on a large number of computers.
  ☆82Updated 2 years ago
• eric-ooi / elastic-m365
  Custom Kibana dashboards to secure and monitor Microsoft 365.
  ☆13Updated last year
• olafhartong / TA-Sysmon-deploy
  Deploy and maintain Symon through the Splunk Deployment Sever
  ☆31Updated 4 years ago
• CiscoSecurity / fp-05-firepower-cef-connector-arcsight
  Cisco eStreamer client
  ☆24Updated 2 years ago
• invictus-ir / Blue-team-app-Office-365-and-Azure
  ☆72Updated 8 months ago
• CrossRealms / Splunk-Cyences-App-for-Splunk
  Cyences App (Cyber Defense) built by CrossRealms International - https://splunkbase.splunk.com/app/5351/
  ☆10Updated this week
• kidcrash22 / Sysmon-Threat-Intel
  ☆13Updated 7 years ago