RBA is Splunk's method to aggregate low-fidelity security events as interesting observations tagged with security metadata to create high-fidelity, low-volume alerts.
☆65Apr 10, 2026Updated 2 weeks ago
Alternatives and similar repositories for rba
Users that are interested in rba are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Provides an advanced input.conf file for Windows and 3rd party related software with more than 70 different event log mapped to the MITRE…☆99Apr 7, 2026Updated 3 weeks ago
- Downloading Splunk, made easy through scripts☆28Apr 6, 2026Updated 3 weeks ago
- Splunk spec files version history☆43Apr 14, 2026Updated 2 weeks ago
- Splunk App for Splunk4Champions Workshop☆23Apr 22, 2026Updated last week
- scripts using splunk application lookup-editor endpoint. Download, upload and update splunk lookups content☆31Jul 1, 2024Updated last year
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Best practice configuration for Linux auditd for CIS and STIG standards, enhanced with LOTL detection rules.☆18Dec 6, 2025Updated 4 months ago
- Splunk Content Control Tool☆132Apr 14, 2026Updated 2 weeks ago
- Grand Central logging for Cloud Services to Splunk☆37Jan 22, 2022Updated 4 years ago
- Data validator agains Splunk Common Information Model (CIM)☆78Mar 27, 2024Updated 2 years ago
- Splunk connect for SNMP☆41Updated this week
- Monitor syslog collection infrastructure & offer syslog configuration templates.☆27Feb 9, 2018Updated 8 years ago
- Bulk modify Splunk Knowledge Object's owners, permissions, apps, sharing and move them to another app☆27Aug 27, 2022Updated 3 years ago
- Splunk Connect for Syslog☆177Apr 22, 2026Updated last week
- Azure Functions for getting data in to Splunk☆33Apr 20, 2026Updated last week
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Config viewer and file editor for Splunk. Based on VSCode.☆34Mar 7, 2026Updated last month
- ☆15Jan 9, 2026Updated 3 months ago
- Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise☆69Apr 29, 2024Updated 2 years ago
- Sysmon Splunk App☆47Aug 21, 2018Updated 7 years ago
- Admin Config Service CLI☆17Mar 10, 2026Updated last month
- Splunk app to monitor the /etc directory of Splunk for all changes of .conf files☆13Jan 26, 2018Updated 8 years ago
- Splunk Admins application to assist with troubleshooting Splunk enterprise installations☆101Apr 21, 2026Updated last week
- Maps+ for Splunk☆21Updated this week
- ☆77Jul 15, 2021Updated 4 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Splunk Security Content☆1,615Updated this week
- A repository of curated datasets from various attacks☆764Apr 22, 2026Updated last week
- Splunk Operator for Kubernetes☆256Updated this week
- Workshop showing you how to setup Amazon Web Services to send data to Splunk☆74Sep 9, 2020Updated 5 years ago
- Postfix Add-on for Splunk (Compliant with the Mail CIM model)☆11Mar 18, 2021Updated 5 years ago
- CrowdStrike Falcon log forwarder from falcon S3 bucket to your S3 bucket☆11Apr 15, 2021Updated 5 years ago
- Splunk csv to KVStore ES Threat Intel☆11Jul 11, 2016Updated 9 years ago
- Splunk scripted input for opening a backconnect shell on a remote forwarder☆45Nov 18, 2020Updated 5 years ago
- Phantom Apps Repo☆83Nov 9, 2021Updated 4 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- ☆13Apr 21, 2026Updated last week
- Ansible framework providing a fast and simple way to spin up complex Splunk environments.☆135Updated this week
- Risk Based Alerting Supporting Add-On (SA) for Splunk☆44Oct 28, 2021Updated 4 years ago
- Shell script to download apps from Splunkbase☆24May 19, 2020Updated 5 years ago
- Searches and dashboards to assist with optimising concurrency settings☆31Mar 4, 2022Updated 4 years ago
- How to run cluster of Splunk Enterprise in Docker. Examples.☆34Oct 27, 2016Updated 9 years ago
- Allows to pull asset and identity data into Splunk app for Enterprise Security from LDAP and other sources☆28Feb 23, 2018Updated 8 years ago