west-wind / Threat-Hunting-With-SplunkLinks
Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise
☆66Updated last year
Alternatives and similar repositories for Threat-Hunting-With-Splunk
Users that are interested in Threat-Hunting-With-Splunk are comparing it to the libraries listed below
Sorting:
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆57Updated 3 years ago
- A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation☆77Updated last year
- Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…☆47Updated 3 months ago
- A repository of my own Sigma detection rules.☆160Updated 11 months ago
- This repository contains Splunk queries to hunt some anomalies☆43Updated 3 years ago
- Dettectinator - The Python library to your DeTT&CT YAML files.☆115Updated 4 months ago
- Resources To Learn And Understand SIGMA Rules☆180Updated 2 years ago
- User Feedback Space of #MitreAssistant☆37Updated 2 years ago
- Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…