Reworked assets for Azure Sentinel using Cisco Umbrella logs as source. Includes logstash config for Cisco Umbrella using Cisco managed AWS S3
☆13Apr 14, 2020Updated 5 years ago
Alternatives and similar repositories for Azure-Sentinel-CiscoUmbrella
Users that are interested in Azure-Sentinel-CiscoUmbrella are comparing it to the libraries listed below
Sorting:
- Automated review process for your Azure AD guest accounts.�☆17Sep 22, 2020Updated 5 years ago
- Sample data generator for the Splunk for Palo Alto Networks app.☆12Sep 25, 2016Updated 9 years ago
- Message filter plugin to reverse lookup the source field☆10Jan 8, 2018Updated 8 years ago
- A collection of scripts and works related to Azure Sentinel☆42Jul 9, 2022Updated 3 years ago
- ☆11Aug 15, 2024Updated last year
- (Unofficial) Python API for https://sslbl.abuse.ch/☆11Dec 9, 2016Updated 9 years ago
- ☆10Sep 12, 2024Updated last year
- Tools by cooey comrades for cooey comrades.☆16Feb 23, 2023Updated 3 years ago
- Documentation for connecting Microsoft Sentinel and the ACSC CTIS platform☆10Jan 23, 2024Updated 2 years ago
- This repository contains advanced threat hunting scripts for Cisco Secure Endpoint API. The scripts leverage the AMP API to hunt for thre…☆14Jun 28, 2025Updated 8 months ago
- Identify vulnerabilities in your API's using the OpenAPI Security Scanner☆12Dec 6, 2018Updated 7 years ago
- ☆17Oct 24, 2025Updated 4 months ago
- ☆15Feb 12, 2023Updated 3 years ago
- ☆12Jun 29, 2021Updated 4 years ago
- Block abused TLDs in Tenant Allow BlockList☆14Jan 21, 2026Updated last month
- Remove all resources from an Azure Tenant and it's Subscriptions.☆56Feb 26, 2026Updated last week
- ☆12Jul 15, 2022Updated 3 years ago
- ☆12Feb 15, 2024Updated 2 years ago
- Stream Lookup function for GrayLog2 Pipeline Processor☆14Oct 1, 2021Updated 4 years ago
- Snort rules to detect local malware, phishing, and adult content by inspecting DNS responses from OpenDNS☆52Sep 16, 2016Updated 9 years ago
- Observable Network Appliance for passive monitoring of a network☆17May 8, 2025Updated 9 months ago
- Track the real-time positions of aircraft on a PyPortal display☆14May 27, 2025Updated 9 months ago
- Automatically generated Sysmon parser for Azure Sentinel☆18Jan 6, 2026Updated 2 months ago
- Laravel 5 package for the Google Safebrowsing API☆12Oct 16, 2018Updated 7 years ago
- IP geolocation for authentication events with MozDef☆10Apr 29, 2019Updated 6 years ago
- Simple UI for Ryu SDN controller☆11May 26, 2014Updated 11 years ago
- Enable the automatic deployment of Azure Sentinel using code☆118May 3, 2022Updated 3 years ago
- Fixes and patches☆20Dec 3, 2020Updated 5 years ago
- Miscellaneous Azure Sentinel files that don't fall into other categories.☆13Aug 23, 2021Updated 4 years ago
- MISP to Splunk Enterprise Security Theat Intelligence Framework Integration☆14Jul 11, 2023Updated 2 years ago
- .NET MCP Server to connect with Claude Desktop and AEC Data Model API☆31Sep 28, 2025Updated 5 months ago
- ☆16May 23, 2025Updated 9 months ago
- Aggregated ATT&CK technique reporting data. Presented at Splunk GovSummit December 2022☆17Jul 18, 2025Updated 7 months ago
- Repository for hosting security related PowerShell scripts.☆13Apr 7, 2025Updated 10 months ago
- Low cost DIY open source MegaSquirt derivative.☆16Jan 15, 2017Updated 9 years ago
- This is a rofi theme based on the Materia GTK Theme☆12Jan 8, 2020Updated 6 years ago
- Sample implementation of windows credential provider in Rust☆17Aug 3, 2023Updated 2 years ago
- Python tool for converting from joy format to JA3 format SSL/TLS hashes☆11Jun 3, 2020Updated 5 years ago
- Sysmon configuration☆65Jul 12, 2018Updated 7 years ago