Splunk Add-on for PowerShell provides field extraction for PowerShell event logs.
☆17Feb 1, 2021Updated 5 years ago
Alternatives and similar repositories for splunk-addon-powershell
Users that are interested in splunk-addon-powershell are comparing it to the libraries listed below
Sorting:
- MISP to Splunk Enterprise Security Theat Intelligence Framework Integration☆14Jul 11, 2023Updated 2 years ago
- Check Sigma rules for easy-to-bypass whitelists to make them more robust (https://github.com/SigmaHQ/sigma)☆15Feb 1, 2021Updated 5 years ago
- Converts Sigma detection rules to a Splunk alert configuration.☆12Jul 1, 2021Updated 4 years ago
- Atomic Red Team Simple Parser☆13Sep 21, 2018Updated 7 years ago
- Guardicore osqueries collection for asset information, TH and compliance.☆18Dec 22, 2021Updated 4 years ago
- Custom Splunk search command to reconstruct a pstree from Sysmon process creation events (EventCode 1)☆24Mar 3, 2023Updated 3 years ago
- Windows stuff☆16Feb 5, 2020Updated 6 years ago
- ☆26Sep 29, 2018Updated 7 years ago
- Data Governance app for Splunk☆12Oct 19, 2023Updated 2 years ago
- ☆19Aug 6, 2021Updated 4 years ago
- ASN Lookup Generator for Splunk☆10Jan 24, 2024Updated 2 years ago
- More Obvious Webmalware Repository☆16Dec 16, 2016Updated 9 years ago
- ☆42Sep 16, 2022Updated 3 years ago
- Set Operations App for Splunk☆10Mar 29, 2021Updated 4 years ago
- Actionable analytics designed to combat threats based on MITRE's ATT&CK.☆23Aug 21, 2019Updated 6 years ago
- A Splunk app to use MISP in background☆112Jan 8, 2026Updated 2 months ago
- JSON Tools Technology Add-On for Splunk☆10Mar 31, 2021Updated 4 years ago
- A Splunk technology add-on for osquery☆14Sep 5, 2025Updated 6 months ago
- Web app that provides basic navigation and annotation of ATT&CK matrices☆17Nov 7, 2020Updated 5 years ago
- A C# tool for enumerating remote access policies through group policy.☆73Apr 18, 2019Updated 6 years ago
- Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…☆90Sep 16, 2023Updated 2 years ago
- Artefacts from various retefe campaigns☆10Mar 9, 2019Updated 7 years ago
- Export MISP attributes in Yara☆12Sep 15, 2017Updated 8 years ago
- ☆23Jul 7, 2023Updated 2 years ago
- Compiled Binaries for Sharp Suite☆15Dec 28, 2019Updated 6 years ago
- AWS EKS Cluster Forensics☆23Aug 16, 2021Updated 4 years ago
- Validates Sigma rules using the JSON schema☆22Mar 18, 2024Updated 2 years ago
- Best practices in threat intelligence☆50Nov 6, 2022Updated 3 years ago
- A Prometheus-format exporter to report on DockerHub per-image rate limits☆11Mar 6, 2026Updated 2 weeks ago
- Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here at ht…☆24Jun 20, 2023Updated 2 years ago
- Container Security Verification Standard☆36Mar 28, 2019Updated 6 years ago
- This module installs and configures MISP (Malware Information Sharing Platform)☆14Mar 6, 2026Updated 2 weeks ago
- Collection of things made during my SLAE 32-bit journey☆14Feb 24, 2022Updated 4 years ago
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆69Mar 17, 2024Updated 2 years ago
- Munk - Visualize Splunk Architecture in Maltego☆13Sep 19, 2014Updated 11 years ago
- A rewrite of mactime, a bodyfile reader☆40Aug 5, 2024Updated last year
- Examples of using Consul Connect features in Nomad☆10Updated this week
- MITRE ATT&CK Framework compliance dashboard and correlation searches that works with Splunk Enterprise Security and ES Content Update☆30Nov 7, 2025Updated 4 months ago
- Osquery Packs we use for customer security hardening☆12Jun 30, 2025Updated 8 months ago