nccgroup / Splunking-Crime
Splunking Crime using Splunk Machine Learning Toolkit
☆11Updated 6 years ago
Alternatives and similar repositories for Splunking-Crime:
Users that are interested in Splunking-Crime are comparing it to the libraries listed below
- Splunk scripted input for opening a backconnect shell on a remote forwarder☆45Updated 4 years ago
- Splunk custom alert action for Atlassian JIRA☆18Updated 6 years ago
- Data Governance app for Splunk☆12Updated last year
- ☆55Updated 3 years ago
- Drill down into your python logs using JSON logs stored in Splunk - supports sending over TCP or the Splunk HEC REST API handlers (using …☆12Updated 2 years ago
- Various Splunk Scripts and applets, all in one place☆32Updated 2 weeks ago
- ☆14Updated 7 years ago
- Data validator agains Splunk Common Information Model (CIM)☆75Updated last year
- stoQ Public Plugins☆71Updated 2 years ago
- Python scripts to download, parse, and enrich scans.io study data and load into Splunk for research, threat intelligence gathering, and s…☆19Updated last month
- A collection of awesome resources built for and around the Splunk Phantom platform.☆15Updated 4 years ago
- A Splunk app for obtaining information from web apps☆11Updated 4 years ago
- Corelight-Ansible-Roles are a collection of Ansible Roles and playbooks that install, configure, run and manage a variety of Corelight, S…☆16Updated 3 years ago
- Splunk Alert Manager with advanced reporting on alerts, workflows (modify assignee, status, severity) and auto-resolve features☆81Updated 2 years ago
- Run Splunk heavy forwarders in Docker Swarm for high availability, security, and reduced cost!☆14Updated 7 months ago
- Splunk App for Cribl Stream and Edge Observability☆25Updated 2 weeks ago
- Splunk csv to KVStore ES Threat Intel☆11Updated 8 years ago
- Allows for MAC address to vendor mapping in Splunk☆16Updated last year
- A collection of notebooks built for defensive and offensive operations.☆77Updated 4 years ago
- Splunk App for Data Science and Deep Learning - container images repository☆51Updated this week
- Apps for Splunk Phantom security automation | Cisco Meraki | Ansible Tower | F5 | A10☆25Updated 4 years ago
- User anomaly detector based on logs generated by Osquery framework and machine learning to process those logs.☆33Updated 7 years ago
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆34Updated last month