This repository contains Splunk queries to hunt some anomalies
☆46Jul 28, 2022Updated 3 years ago
Alternatives and similar repositories for Splunk-Threat-Hunting
Users that are interested in Splunk-Threat-Hunting are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise☆68Apr 29, 2024Updated last year
- ☆14Jan 2, 2025Updated last year
- Collection of Dashboards for Threat Hunting and more!☆74Oct 17, 2020Updated 5 years ago
- A repository for generalized splunk code, dashboards, resources and suggestions/recommendations.☆31Dec 13, 2022Updated 3 years ago
- Collection of Splunking Tools, SPL Code and Resources☆15Jan 30, 2025Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- Queries, Dashboards, and Splunk Knowledge Objects to Monitor Oracle Database Metrics☆14Mar 11, 2021Updated 5 years ago
- Splunk code (SPL) for serious threat hunters and detection engineers.☆292Jan 15, 2024Updated 2 years ago
- DNS Dashboard for hunting and identifying beaconing☆16Jul 29, 2020Updated 5 years ago
- Provides an advanced input.conf file for Windows and 3rd party related software with more than 70 different event log mapped to the MITRE…☆96Jun 28, 2025Updated 9 months ago
- ☆19Dec 9, 2024Updated last year
- 🐻❄️ 🏹 Threat hunting with Polars and flaws.cloud AWS CloudTrail datasets.☆14May 22, 2024Updated last year
- An awesome little REPL for issuing SPLUNK queries☆28Dec 18, 2015Updated 10 years ago
- Crowdstrike response script containing various functions for IR/triage☆12Dec 7, 2020Updated 5 years ago
- some scripts for splunk☆53Jan 2, 2020Updated 6 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- These are some of the commands which I use frequently during Malware Analysis and DFIR.☆24Jan 8, 2024Updated 2 years ago
- Splunk Observability Cloud docs☆25Aug 4, 2025Updated 7 months ago
- A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.☆34Jul 23, 2024Updated last year
- scripts using splunk application lookup-editor endpoint. Download, upload and update splunk lookups content☆31Jul 1, 2024Updated last year
- Function ID for Malware Analysis☆13Jul 6, 2020Updated 5 years ago
- Investigating attacks using Splunk Enterprise logs and creating SPL intrusion detection searches based on known attacker TTPs and anomaly…☆29Nov 19, 2023Updated 2 years ago
- Full of public notes and Utilities☆133Jan 6, 2026Updated 2 months ago
- bash scripting cheatsheet.☆21Oct 13, 2021Updated 4 years ago
- Stupid Simple Detection Testing☆13Mar 7, 2024Updated 2 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Hunt for Keywords , Mutex, Windows Event,Registry Keys,Process,Schedule tasks in Windows Machine☆22Dec 8, 2024Updated last year
- DeadManSwitch in rust with several triggers (remote local and network)☆17Nov 19, 2025Updated 4 months ago
- An example of the use of tabs on a Splunk dashboard. #splunk☆22Aug 26, 2023Updated 2 years ago
- A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon☆216May 23, 2020Updated 5 years ago
- for Windows Malware Analysis☆16May 14, 2020Updated 5 years ago
- Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…☆40Apr 8, 2021Updated 4 years ago
- Knowing which rule should trigger according to the redcannary test☆11Nov 23, 2024Updated last year
- Power-Forensics is the Best Friend for Incident Responders to perform IR and collect evidences for Linux based host☆12Jun 2, 2023Updated 2 years ago
- Threat Hunting queries for various attacks☆244Jan 16, 2026Updated 2 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- Home for Splunk security datasets.☆130Mar 18, 2020Updated 6 years ago
- Simple deployment of Splunk using Ansible, static host lists.☆62Mar 16, 2015Updated 11 years ago
- CyberArk Privileged Access Security Application Performance Monitoring Dashboards for Splunk☆40May 20, 2020Updated 5 years ago
- Links to VeteranSec Resources☆12May 18, 2020Updated 5 years ago
- My PowerShell Profile Scripts and Modules☆13Mar 16, 2026Updated last week
- OmTraffic is a fast and efficient Python Omegle traffic bot that enables you to send a large number of messages to random strangers on Om…☆10May 21, 2023Updated 2 years ago
- ☆34Mar 4, 2019Updated 7 years ago