splunkalicious / PII_Tools

Related projects ⓘ

Alternatives and complementary repositories for PII_Tools

• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆76Updated 4 years ago
• hire-vladimir / SA-cim_vladiator
  Data validator agains Splunk Common Information Model (CIM)
  ☆75Updated 7 months ago
• splunk / TA-osquery
  A Splunk technology add-on for osquery
  ☆14Updated 3 years ago
• MattUebel / splunk_UF_hardening
  scripts to configure the Splunk Universal Forwarder in a locked down state
  ☆40Updated 5 years ago
• PaloAltoNetworks / minemeld-ansible
  Ansible playbook for installing MineMeld on Linux
  ☆48Updated 3 years ago
• splunk / attack_range_cloud
  Attack Range to test detection against nativel serverless cloud services and environments
  ☆35Updated 3 years ago
• rkovar / splunk-hunting-helpers
  ☆55Updated 2 years ago
• phantomcyber / phantom-community-projects
  This repo represents work the Phantom Community collaborates on to build apps and learn.
  ☆12Updated 3 years ago
• CiscoSecurity / fp-05-firepower-cef-connector-arcsight
  Cisco eStreamer client
  ☆25Updated 2 years ago
• sans-blue-team / NSM
  This repository is created to add value to existing Network Security Monitoring solutions.
  ☆42Updated 8 years ago
• apger / SA-RBA
  Risk Based Alerting Supporting Add-On (SA) for Splunk
  ☆45Updated 3 years ago
• hosom / bro-otx
  Integrate Zeek with Alienvault OTX
  ☆25Updated 4 years ago
• alias454 / ansible-splunk-playbook
  Install a full Splunk Enterprise Cluster or Universal forwarder using an ansible playbook
  ☆50Updated 4 years ago
• tfrederick74656 / splunkbase-download
  Shell script to download apps from Splunkbase
  ☆20Updated 4 years ago
• OTRF / infosec-jupyterthon
  A community event for security researchers to share their favorite notebooks
  ☆106Updated 9 months ago
• remg427 / misp42splunk
  A Splunk app to use MISP in background
  ☆109Updated 3 weeks ago
• socprime / soc_workflow_app_ce
  SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…
  ☆92Updated 2 years ago
• hire-vladimir / SA-IdentityAssetExtraction
  Allows to pull asset and identity data into Splunk app for Enterprise Security from LDAP and other sources
  ☆27Updated 6 years ago
• TheHive-Project / TheHiveHooks
  This is a python tool aiming to make using TheHive webhooks easier.
  ☆26Updated 4 years ago
• ThreatConnect-Inc / threatconnect-playbooks
  Community driven repository of Playbooks and Apps for ThreatConnect.
  ☆69Updated 3 months ago
• paychex / Splunk.Conf19
  ☆41Updated last year
• Nclose-ZA / elastalert_hive_alerter
  This package allows the use of a custom Elastalert Alert which creates alerts with observables in TheHive using TheHive4Py.
  ☆27Updated 3 years ago
• P4T12ICK / Sigma2SplunkAlert
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆107Updated 4 years ago
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated last year
• PaloAltoNetworks / minemeld-misp
  MineMeld nodes for MISP
  ☆18Updated 10 months ago
• splunk / splunk-mltk-container-docker
  Splunk App for Data Science and Deep Learning - container images repository
  ☆50Updated last month
• ncsa / bro-doctor
  ☆23Updated 4 years ago
• TheHive-Project / Synapse
  Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform
  ☆71Updated last year