Alternatives and similar repositories for DA-ESS-MitreContent

Users that are interested in DA-ESS-MitreContent are comparing it to the libraries listed below

• kidcrash22 / Sysmon-Threat-Intel

  View on GitHub
  ☆13Feb 6, 2018Updated 8 years ago
• splunk / TA-misp_es

  View on GitHub
  MISP to Splunk Enterprise Security Theat Intelligence Framework Integration
  ☆14Jul 11, 2023Updated 2 years ago
• LukeMurphey / splunk-slideshow

  View on GitHub
  A Splunk app that will rotate between dashboards on a frequency; useful for displaying content on informational big screens.
  ☆13Mar 9, 2022Updated 3 years ago
• criblio / cribl-training

  View on GitHub
  Cribl Environment for learning LogStream
  ☆14Sep 29, 2020Updated 5 years ago
• splunk / attack-detections-collector

  View on GitHub
  Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique
  ☆69Mar 17, 2024Updated last year
• ansible-collections / splunk.es

  View on GitHub
  Ansible Collection for Splunk Enterprise Security ES
  ☆14Feb 3, 2026Updated last week
• CalvinKrist / ProjectBrightSun

  View on GitHub
  A suite of cybersecurity tools designed to allow for rapid deployment of virtualized environments. Intended for use in education: contain…
  ☆15Nov 11, 2019Updated 6 years ago
• geekscrapy / docker-snort

  View on GitHub
  Snort + Pulledpork + Websnort in Docker!
  ☆22Nov 9, 2021Updated 4 years ago
• MrM8BRH / Splunk

  View on GitHub
  This repository is a comprehensive collection of resources, documentation, apps, and add-ons related to Splunk, a powerful data analytics…
  ☆24Updated this week
• swisscom / splunk-addon-powershell

  View on GitHub
  Splunk Add-on for PowerShell provides field extraction for PowerShell event logs.
  ☆17Feb 1, 2021Updated 5 years ago
• apger / SA-RBA

  View on GitHub
  Risk Based Alerting Supporting Add-On (SA) for Splunk
  ☆44Oct 28, 2021Updated 4 years ago
• DanielSchwartz1 / SplunkForPCAP

  View on GitHub
  The PCAP Analyzer for Splunk includes useful Dashboards to analyze network packet capture files from Wireshark or Network Monitor (.pcap)
  ☆46Dec 29, 2025Updated last month
• sduff / awesome-es

  View on GitHub
  A collection of awesome resources for Splunk Enterprise Security
  ☆22Sep 11, 2020Updated 5 years ago
• kcyerrid / CTI

  View on GitHub
  Cyber Threat Intelligence
  ☆74Dec 7, 2025Updated 2 months ago
• bsidessplunk / 2021

  View on GitHub
  Files and Folders for BSides Splunk 2021
  ☆22May 14, 2021Updated 4 years ago
• Shaiou / Terraform-Splunk

  View on GitHub
  Terraform template to build a splunk cluster
  ☆25Dec 5, 2024Updated last year
• Cyb3rWard0g / docker-caldera

  View on GitHub
  Docker Container to deploy Mitre Caldera Automated Adversary Emulation System
  ☆26Sep 26, 2020Updated 5 years ago
• murchisd / splunk_pstree_app

  View on GitHub
  Custom Splunk search command to reconstruct a pstree from Sysmon process creation events (EventCode 1)
  ☆24Mar 3, 2023Updated 2 years ago
• gjanders / SplunkVersionControl

  View on GitHub
  Version Control application for Splunk
  ☆31Updated this week
• mthcht / lookup-editor_scripts

  View on GitHub
  scripts using splunk application lookup-editor endpoint. Download, upload and update splunk lookups content
  ☆31Jul 1, 2024Updated last year
• P4T12ICK / Sigma2SplunkAlert

  View on GitHub
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆115May 18, 2020Updated 5 years ago
• Azure / splunk-enterprise

  View on GitHub
  Guidance on deploying Splunk Enterprise on Azure with automated reference implementation
  ☆30Mar 13, 2023Updated 2 years ago
• Truvis / SplunkDashboards

  View on GitHub
  Collection of Dashboards for Threat Hunting and more!
  ☆73Oct 17, 2020Updated 5 years ago
• jangalapalli / CCSP-Study-Material

  View on GitHub
  Disclaimer: Please note that these materials are public available in several reference websites. These materials are not only the source …
  ☆12Dec 31, 2023Updated 2 years ago
• defensivedepth / osquery-filters

  View on GitHub
  ☆34Aug 8, 2023Updated 2 years ago
• secgroundzero / ossem_modular

  View on GitHub
  OSSEM Modular
  ☆27Jun 29, 2020Updated 5 years ago
• ChrisForsythe / SplunkStuff

  View on GitHub
  A repository for generalized splunk code, dashboards, resources and suggestions/recommendations.
  ☆32Dec 13, 2022Updated 3 years ago
• splunk / dashboard-conf19-examples

  View on GitHub
  Splunk new dashboard framework examples .conf 2019
  ☆34Oct 28, 2023Updated 2 years ago
• hire-vladimir / SA-cim_vladiator

  View on GitHub
  Data validator agains Splunk Common Information Model (CIM)
  ☆78Mar 27, 2024Updated last year
• tallydev / smart_life_api

  View on GitHub
  Smart Life API
  ☆13Dec 6, 2017Updated 8 years ago
• fortinet-fortisoar / solution-pack-soar-framework

  View on GitHub
  ☆14Feb 6, 2026Updated last week
• 0xSojalSec / AI-driven-penetration-testing-tool

  View on GitHub
  An advanced AI-driven vulnerability scanner and penetration testing tool that integrates multiple AI providers (OpenAI, Grok, OLLAMA, Cla…
  ☆34Nov 7, 2025Updated 3 months ago
• mattnovitsch / MECM

  View on GitHub
  ☆12Jun 9, 2021Updated 4 years ago
• paychex / Splunk.Conf19

  View on GitHub
  ☆42Oct 10, 2023Updated 2 years ago
• SigmaHQ / pySigma-backend-splunk

  View on GitHub
  pySigma Splunk backend
  ☆41Updated this week
• mdecrevoisier / Splunk-input-windows-baseline

  View on GitHub
  Provides an advanced input.conf file for Windows and 3rd party related software with more than 70 different event log mapped to the MITRE…
  ☆94Jun 28, 2025Updated 7 months ago
• aws-quickstart / quickstart-splunk-enterprise

  View on GitHub
  AWS Quick Start Team
  ☆40Oct 3, 2024Updated last year
• splunk / security_content_docs

  View on GitHub
  Contains research.splunk.com site code
  ☆11Apr 10, 2024Updated last year
• francoisfried / Defender-Advanced-Hunting-Queries

  View on GitHub
  KQL queries for Microsoft Defender Advanced Hunting organized around the TTPs of the MITRE ATT&CK framework.
  ☆18Nov 7, 2024Updated last year