Home for Splunk security datasets.
☆129Mar 18, 2020Updated 5 years ago
Alternatives and similar repositories for securitydatasets
Users that are interested in securitydatasets are comparing it to the libraries listed below
Sorting:
- Splunk Boss of the SOC version 3 dataset.☆413Jun 18, 2020Updated 5 years ago
- Splunk Security Content☆1,575Updated this week
- Splunk Remote Work Insights - Executive Dashboard☆43Aug 20, 2020Updated 5 years ago
- A repository of curated datasets from various attacks☆726Feb 20, 2026Updated last week
- Collection of Dashboards for Threat Hunting and more!☆74Oct 17, 2020Updated 5 years ago
- This pack is targeted for collections of Window events in the Classic or newer XML format. For events in the Classic format, sometimes th…☆16Jan 30, 2023Updated 3 years ago
- Quick lookup files for SUNBURST Backdoor☆12Dec 15, 2020Updated 5 years ago
- Splunk Connect for Syslog☆173Feb 20, 2026Updated last week
- Splunk Admins application to assist with troubleshooting Splunk enterprise installations☆101Feb 18, 2026Updated last week
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,173Jul 26, 2023Updated 2 years ago
- Build a attack range in your local machine☆132May 8, 2023Updated 2 years ago
- A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data int…☆2,445Updated this week
- ☆55Mar 2, 2022Updated 3 years ago
- Collection of Splunking Tools, SPL Code and Resources☆15Jan 30, 2025Updated last year
- ☆13Feb 18, 2026Updated last week
- Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack☆12Apr 18, 2020Updated 5 years ago
- This repository contains Splunk queries to hunt some anomalies☆46Jul 28, 2022Updated 3 years ago
- ☆37May 13, 2020Updated 5 years ago
- These are some of the commands which I use frequently during Malware Analysis and DFIR.☆24Jan 8, 2024Updated 2 years ago
- Run Splunk heavy forwarders in Docker Swarm for high availability, security, and reduced cost!☆14Aug 19, 2025Updated 6 months ago
- The Admin Assistant allows Splunk admins to monitor data ingestion and onboarding, RBAC config, user onboarding, and more! Dashboard pane…☆10Feb 27, 2022Updated 4 years ago
- Modular command-line threat hunting tool & framework.☆17Jul 20, 2020Updated 5 years ago
- ☆15Dec 16, 2020Updated 5 years ago
- 🛡️ SIGMA Detection Engineering Platform A comprehensive AI-powered detection engineering platform for security teams to explore MITRE AT…☆46Jun 28, 2025Updated 8 months ago
- Splunk Boss of the SOC version 2 dataset.☆416Nov 1, 2022Updated 3 years ago
- Our collection of Wazuh detection rules for our Offense Lab☆18Feb 13, 2022Updated 4 years ago
- ☆124Jan 27, 2022Updated 4 years ago
- Splunk Event Generator: Eventgen☆394Aug 1, 2023Updated 2 years ago
- Splunk Observability Cloud docs☆25Aug 4, 2025Updated 6 months ago
- A repository of sysmon configuration modules☆2,980Aug 21, 2024Updated last year
- Splunk Docker GitHub Repository☆528Jan 28, 2026Updated 3 weeks ago
- PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monit…☆843Updated this week
- Learn Splunk by creating a lab instance in seconds. Includes Eventgen and Splunk's Machine Learning app!☆107Jun 10, 2025Updated 8 months ago
- Windows Events Attack Samples☆2,515Jan 24, 2023Updated 3 years ago
- Azure Functions for getting data in to Splunk☆33Oct 22, 2025Updated 4 months ago
- Sunburst IOCs for Splunk Ingest☆18Jan 28, 2021Updated 5 years ago
- Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-Cradle…☆315Oct 21, 2021Updated 4 years ago
- An ELK environment containing interesting security datasets.☆136May 11, 2020Updated 5 years ago
- A script to create and assign SOP tasks into the cases☆20Aug 16, 2020Updated 5 years ago