michaelpeacock / kafka-sigma-streamsLinks
☆19Updated 3 years ago
Alternatives and similar repositories for kafka-sigma-streams
Users that are interested in kafka-sigma-streams are comparing it to the libraries listed below
Sorting:
- Analyze Zeek IDS data with ksqlDB running on Confluent Platform via Docker on your laptop. Or spin up an arbitrary number of AWS hosts, …☆11Updated 3 years ago
- Confluent s2s Demo☆10Updated 2 years ago
- Geospatial UDFs for KSQL☆22Updated 3 years ago
- A collection of Cortex Analyzers and Responders for TheHive/Cortex☆13Updated 5 years ago
- ☆41Updated 2 years ago
- Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.☆20Updated 3 years ago
- Parses the FireEye HX .mans triage collections and sends them to ElasticSearch☆14Updated 2 years ago
- Ansible playbook to convert Sigma rules to ElastAlert rules☆10Updated 4 years ago
- Kafka connector for Splunk☆93Updated 10 months ago
- ☆14Updated 5 months ago
- A collection of scripts useful in management of Splunk deployment☆20Updated 10 months ago
- Parse wazuh[HIDS] alerts into ECS mapping using Filebeat☆27Updated 4 years ago
- The idea is simply to save some quick notes that will make it easier for Splunk users to leverage KQL (Kusto), especially giving projects…☆43Updated 4 years ago
- Splunk TA for sending completion requests to ChatGPT☆25Updated last year
- Splunk Searches and Dashboards for DNS Threat Hunting☆10Updated 7 years ago
- Automatic detection engineering technical state compliance☆55Updated 11 months ago
- MISP to Splunk Enterprise Security Theat Intelligence Framework Integration☆13Updated last year
- A Splunk technology add-on for osquery☆14Updated 4 years ago
- Risk Based Alerting Supporting Add-On (SA) for Splunk☆45Updated 3 years ago
- A collection of tips for using MISP.☆74Updated 6 months ago
- Scripted inputs designed to address common use-cases in forwarder misconfigurations in a Splunk deployment☆35Updated 9 months ago
- Automated detection rule analysis utility☆29Updated 2 years ago
- Microfocus ArcSight FlexConnector for Microsoft Sysmon tool☆19Updated 4 years ago
- This repository was created to aid in the deployment/maintenance of the Sysmon service on a large number of computers.☆82Updated 2 years ago
- Custom Kibana dashboards to secure and monitor Microsoft 365.☆13Updated last year
- Deploy and maintain Symon through the Splunk Deployment Sever☆31Updated 4 years ago
- Cisco eStreamer client☆24Updated 2 years ago
- ☆72Updated 8 months ago
- Cyences App (Cyber Defense) built by CrossRealms International - https://splunkbase.splunk.com/app/5351/☆10Updated this week
- ☆13Updated 7 years ago