RBA is Splunk's method to aggregate low-fidelity security events as interesting observations tagged with security metadata to create high-fidelity, low-volume alerts.
☆66Jun 2, 2026Updated last week
Alternatives and similar repositories for rba
Users that are interested in rba are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Provides an advanced input.conf file for Windows and 3rd party related software with more than 70 different event log mapped to the MITRE…☆99Apr 7, 2026Updated 2 months ago
- Downloading Splunk, made easy through scripts☆28Jun 1, 2026Updated last week
- Splunk spec files version history☆43May 21, 2026Updated 2 weeks ago
- Kintyre's Splunk Configuration tool☆53Mar 11, 2025Updated last year
- Splunk App for Splunk4Champions Workshop☆23May 22, 2026Updated 2 weeks ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- scripts using splunk application lookup-editor endpoint. Download, upload and update splunk lookups content☆32Jul 1, 2024Updated last year
- Best practice configuration for Linux auditd for CIS and STIG standards, enhanced with LOTL detection rules. If you need help with implem…☆18Dec 6, 2025Updated 6 months ago
- Grand Central logging for Cloud Services to Splunk☆37Jan 22, 2022Updated 4 years ago
- Data validator agains Splunk Common Information Model (CIM)☆79Mar 27, 2024Updated 2 years ago
- Splunk connect for SNMP☆41Jun 2, 2026Updated last week
- Monitor syslog collection infrastructure & offer syslog configuration templates.☆27Feb 9, 2018Updated 8 years ago
- Bulk modify Splunk Knowledge Object's owners, permissions, apps, sharing and move them to another app☆26Aug 27, 2022Updated 3 years ago
- Splunk Connect for Syslog☆178Updated this week
- Azure Functions for getting data in to Splunk☆33Apr 20, 2026Updated last month
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆15Jan 9, 2026Updated 5 months ago
- Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise☆69Apr 29, 2024Updated 2 years ago
- Sysmon Splunk App☆47Aug 21, 2018Updated 7 years ago
- Splunk app to monitor the /etc directory of Splunk for all changes of .conf files☆13Jan 26, 2018Updated 8 years ago
- Splunk Admins application to assist with troubleshooting Splunk enterprise installations☆100Updated this week
- Maps+ for Splunk☆21May 23, 2026Updated 2 weeks ago
- ☆76Jul 15, 2021Updated 4 years ago
- Atlasian JIRA add-on for Splunk alert actions☆15May 6, 2026Updated last month
- Splunk Security Content☆1,638Updated this week
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- A repository of curated datasets from various attacks☆776Updated this week
- Splunk Operator for Kubernetes☆258May 26, 2026Updated last week
- Workshop showing you how to setup Amazon Web Services to send data to Splunk☆74Sep 9, 2020Updated 5 years ago
- Postfix Add-on for Splunk (Compliant with the Mail CIM model)☆11Mar 18, 2021Updated 5 years ago
- CrowdStrike Falcon log forwarder from falcon S3 bucket to your S3 bucket☆10Apr 15, 2021Updated 5 years ago
- Splunk csv to KVStore ES Threat Intel☆11Jul 11, 2016Updated 9 years ago
- Splunk scripted input for opening a backconnect shell on a remote forwarder☆45Nov 18, 2020Updated 5 years ago
- Phantom Apps Repo☆82Nov 9, 2021Updated 4 years ago
- Ansible framework providing a fast and simple way to spin up complex Splunk environments.☆135Apr 29, 2026Updated last month
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Risk Based Alerting Supporting Add-On (SA) for Splunk☆44Oct 28, 2021Updated 4 years ago
- Shell script to download apps from Splunkbase☆24May 19, 2020Updated 6 years ago
- How to run cluster of Splunk Enterprise in Docker. Examples.☆34Oct 27, 2016Updated 9 years ago
- ShellSweeping the evil.☆53Jun 18, 2024Updated last year
- Allows to pull asset and identity data into Splunk app for Enterprise Security from LDAP and other sources☆28Feb 23, 2018Updated 8 years ago
- MITRE ATT&CK Framework compliance dashboard and correlation searches that works with Splunk Enterprise Security and ES Content Update☆31Updated this week
- MISP to Splunk Enterprise Security Theat Intelligence Framework Integration☆14Jul 11, 2023Updated 2 years ago