RBA is Splunk's method to aggregate low-fidelity security events as interesting observations tagged with security metadata to create high-fidelity, low-volume alerts.
☆63Mar 31, 2026Updated last week
Alternatives and similar repositories for rba
Users that are interested in rba are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Provides an advanced input.conf file for Windows and 3rd party related software with more than 70 different event log mapped to the MITRE…☆98Updated this week
- Downloading Splunk, made easy through scripts☆26Mar 4, 2026Updated last month
- Kintyre's Splunk Configuration tool☆53Mar 11, 2025Updated last year
- Splunk App for Splunk4Champions Workshop☆23Feb 25, 2026Updated last month
- scripts using splunk application lookup-editor endpoint. Download, upload and update splunk lookups content☆31Jul 1, 2024Updated last year
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Splunk Content Control Tool☆131Apr 2, 2026Updated last week
- Grand Central logging for Cloud Services to Splunk☆37Jan 22, 2022Updated 4 years ago
- Data validator agains Splunk Common Information Model (CIM)☆78Mar 27, 2024Updated 2 years ago
- Splunk connect for SNMP☆40Updated this week
- Bulk modify Splunk Knowledge Object's owners, permissions, apps, sharing and move them to another app☆27Aug 27, 2022Updated 3 years ago
- Splunk Connect for Syslog☆173Apr 2, 2026Updated last week
- Azure Functions for getting data in to Splunk☆33Oct 22, 2025Updated 5 months ago
- Config viewer and file editor for Splunk. Based on VSCode.☆34Mar 7, 2026Updated last month
- ☆15Jan 9, 2026Updated 3 months ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise☆69Apr 29, 2024Updated last year
- Sysmon Splunk App☆47Aug 21, 2018Updated 7 years ago
- Admin Config Service CLI☆17Mar 10, 2026Updated 3 weeks ago
- Splunk app to monitor the /etc directory of Splunk for all changes of .conf files☆13Jan 26, 2018Updated 8 years ago
- Splunk Admins application to assist with troubleshooting Splunk enterprise installations☆101Mar 23, 2026Updated 2 weeks ago
- Maps+ for Splunk☆21Apr 1, 2026Updated last week
- ☆77Jul 15, 2021Updated 4 years ago
- Atlasian JIRA add-on for Splunk alert actions☆15Dec 2, 2025Updated 4 months ago
- Splunk Security Content☆1,599Apr 2, 2026Updated last week
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Workshop showing you how to setup Amazon Web Services to send data to Splunk☆74Sep 9, 2020Updated 5 years ago
- Postfix Add-on for Splunk (Compliant with the Mail CIM model)☆11Mar 18, 2021Updated 5 years ago
- CrowdStrike Falcon log forwarder from falcon S3 bucket to your S3 bucket☆11Apr 15, 2021Updated 4 years ago
- Splunk csv to KVStore ES Threat Intel☆11Jul 11, 2016Updated 9 years ago
- Splunk scripted input for opening a backconnect shell on a remote forwarder☆45Nov 18, 2020Updated 5 years ago
- Phantom Apps Repo☆82Nov 9, 2021Updated 4 years ago
- Splunk technical add-on (TA) for ingesting BigFix client, relay, and server logs. Includes REST inputs for ingesting assets, relevant fix…☆17Mar 11, 2025Updated last year
- Ansible framework providing a fast and simple way to spin up complex Splunk environments.☆133Apr 2, 2026Updated last week
- Shell script to download apps from Splunkbase☆24May 19, 2020Updated 5 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Risk Based Alerting Supporting Add-On (SA) for Splunk☆44Oct 28, 2021Updated 4 years ago
- Searches and dashboards to assist with optimising concurrency settings☆30Mar 4, 2022Updated 4 years ago
- How to run cluster of Splunk Enterprise in Docker. Examples.☆34Oct 27, 2016Updated 9 years ago
- ShellSweeping the evil.☆53Jun 18, 2024Updated last year
- Allows to pull asset and identity data into Splunk app for Enterprise Security from LDAP and other sources☆28Feb 23, 2018Updated 8 years ago
- MITRE ATT&CK Framework compliance dashboard and correlation searches that works with Splunk Enterprise Security and ES Content Update☆30Updated this week
- Splunk App for Data Science and Deep Learning - container images repository☆64Updated this week