nccgroup / Splunking-Crime
Splunking Crime using Splunk Machine Learning Toolkit
☆11Updated 5 years ago
Related projects: ⓘ
- Various Splunk Scripts and applets, all in one place☆31Updated last week
- ☆22Updated 2 years ago
- An example of how to make a search command in Python within Splunk.☆13Updated 4 years ago
- A Splunk app for obtaining information from web apps☆11Updated 3 years ago
- Data validator agains Splunk Common Information Model (CIM)☆74Updated 5 months ago
- ☆33Updated this week
- ☆32Updated this week
- ☆14Updated 6 years ago
- A Splunk technology add-on for osquery☆14Updated 3 years ago
- Move frozen buckets to AWS S3 (and ultimately Glacier) for long term storage☆12Updated 6 years ago
- Splunk custom alert action for Atlassian JIRA☆18Updated 5 years ago
- ☆15Updated this week
- A collection of notebooks built for defensive and offensive operations.☆76Updated 3 years ago
- ☆55Updated 2 years ago
- This technology adapter add-on fetches emails for Splunk to index from mailboxes using either POP3 or IMAP, with or without SSL.☆9Updated 3 years ago
- Splunk Alert Manager with advanced reporting on alerts, workflows (modify assignee, status, severity) and auto-resolve features☆81Updated 2 years ago
- Splunk App for Data Science and Deep Learning - container images repository☆47Updated last month
- Allows to pull asset and identity data into Splunk app for Enterprise Security from LDAP and other sources☆27Updated 6 years ago
- Drill down into your python logs using JSON logs stored in Splunk - supports sending over TCP or the Splunk HEC REST API handlers (using …☆12Updated last year
- A Python library to help with some common threat hunting data analysis operations☆138Updated last year
- Phantom Apps Repo☆81Updated 2 years ago
- Splunk (Other Splunk scripts which do not fit into the SplunkAdmins application)☆37Updated 3 weeks ago
- ☆20Updated 4 years ago
- Log Entry to Sigma Rule Converter☆105Updated 2 years ago
- scripts to configure the Splunk Universal Forwarder in a locked down state☆39Updated 5 years ago
- Splunk csv to KVStore ES Threat Intel☆10Updated 8 years ago
- TrackMe - Data tracking system for Splunk admins☆49Updated last year
- A Dynamic test tool for Splunk Technology Add-ons☆57Updated this week
- Splunk Remote Work Insights - Executive Dashboard☆40Updated 4 years ago
- splunksecrets is a tool for working with Splunk secrets offline☆45Updated last year