Alternatives and similar repositories for Splunking-Crime

Users that are interested in Splunking-Crime are comparing it to the libraries listed below

• mitre / caret
  CARET - A tool for viewing cyber analytic relationships
  ☆55Updated 6 years ago
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆77Updated 5 years ago
• CIRCL / PyPDNS
  Client API to query any Passive DNS implementation following the Passive DNS - Common Output Format.
  ☆81Updated last month
• f8al / TA-Shell
  Splunk scripted input for opening a backconnect shell on a remote forwarder
  ☆45Updated 5 years ago
• zeroq / kraut_salad
  Proof of concept implementation of a cyber threat intelligence and incident handling platform
  ☆11Updated 2 years ago
• Concinnity-Risks / LogisticalBudget
  This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…
  ☆35Updated 6 years ago
• fireeye / brocapi
  Bro PCAP Processing and Tagging API
  ☆28Updated 8 years ago
• PUNCH-Cyber / stoq-plugins-public
  stoQ Public Plugins
  ☆71Updated 2 years ago
• aboutsecurity / Bro-samples
  Network Forensics Bro scripts & pcap samples
  ☆63Updated 11 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 7 years ago
• opendns / og-miner
  OpenDNS Graph Miner
  ☆45Updated 8 years ago
• daveherrald / scansio-sonar-splunk
  Python scripts to download, parse, and enrich scans.io study data and load into Splunk for research, threat intelligence gathering, and s…
  ☆19Updated last month
• OTRF / openhunt
  ☆35Updated 4 years ago
• NVISOsecurity / ee-outliers
  Open-source framework to detect outliers in Elasticsearch events
  ☆208Updated 2 years ago
• DavidJBianco / Clearcut
  Clearcut is a tool that uses machine learning to help you focus on the log entries that really need manual review
  ☆197Updated 9 years ago
• neu5ron / TMInfosec
  Repository of all the sites related to infosec IP/Domain/Hash/SSL/etc OSINT and eventually will include more.
  ☆70Updated 3 months ago
• alertmanager / alert_manager
  Splunk Alert Manager with advanced reporting on alerts, workflows (modify assignee, status, severity) and auto-resolve features
  ☆83Updated 3 years ago
• target / huntlib
  A Python library to help with some common threat hunting data analysis operations
  ☆143Updated 2 years ago
• salesforce / bro-sysmon
  How to Zeek Sysmon Logs!
  ☆103Updated 3 years ago
• SuperCowPowers / old-workbench-archived
  Workbench: A scalable python framework for security research and development teams.
  ☆92Updated 6 years ago
• pwnlandia / mnemosyne
  Normalizer for honeypot data.
  ☆11Updated 2 years ago
• robbyFux / Ragpicker
  Ragpicker is a Plugin based malware crawler with pre-analysis and reporting functionalities. Use this tool if you are testing antivirus p…
  ☆94Updated 10 years ago
• passivetotal / python_api
  Python abstract API for PassiveTotal services in the form of libraries and command line utilities.
  ☆86Updated 2 years ago
• Security-Onion-Solutions / securityonion-docker-hh
  ☆21Updated 5 years ago
• JPCERTCC / DetectLM
  Detecting Lateral Movement with Machine Learning
  ☆139Updated 8 years ago
• Soinull / assimilate
  Assimilate is a series of scripts for using the Naïve Bayes algorithm to find potential malicious activity in HTTP headers
  ☆92Updated 8 years ago
• Security-Onion-Solutions / securityonion-setup
  ☆36Updated 5 years ago
• alexfrancow / A-Detector
  An anomaly-based intrusion detection system.
  ☆85Updated 3 years ago
• ktneely / forensics
  shell script to create an image and perform initial examination on a drive
  ☆15Updated 5 years ago
• splunkalicious / PII_Tools
  ☆10Updated 5 years ago