Topic: splunk Goto Github

👇 Here are 740 public repositories matching this topic...

alias454 / ansible-splunk-playbook
splunk,Install a full Splunk Enterprise Cluster or Universal forwarder using an ansible playbook
User: alias454
logging siem ansible splunk splunk-enterprise

anssi-fr / adtimeline
splunk,Timeline of Active Directory changes with replication metadata
Organization: anssi-fr
windows forensics dfir active-directory powershell timeline splunk

anvilogic-forge / armory
splunk,Anvilogic Forge
User: anvilogic-forge
Home Page: https://www.anvilogic.com
detection detection-engineering threat-hunting snowflake splunk

blackhillsinfosec / eventlogging
splunk,Automation scripts to deploy Windows Event Forwarding, Sysmon, and custom audit policies in an Active Directory environment.
Organization: blackhillsinfosec
active-directory elasticsearch powershell splunk threat-hunting windows-event-collector windows-event-logs

cloudmarker / cloudmarker
splunk,Cloud security monitoring tool and framework
Organization: cloudmarker
Home Page: https://cloudmarker.readthedocs.io
azure google-cloud-platform elasticsearch mongodb splunk email slack security security-tools security-audit

dicklesworthstone / automatic_log_collector_and_analyzer
splunk,Replace Splunk in your small company with this one weird trick!
User: dicklesworthstone
Home Page: https://news.ycombinator.com/item?id=37600019
ingestion log logging splunk

ecstatic-nobel / osweep
splunk,Don't Just Search OSINT. Sweep It.
User: ecstatic-nobel
Home Page: https://splunkbase.splunk.com/app/4569/
osint splunk cybersecurity python threat-intelligence threat-hunting threat-analysis malware-analysis pivoting certificate-transparency

graphistry / pygraphistry
splunk,PyGraphistry is a Python library to quickly load, shape, embed, and explore big graphs with the GPU-accelerated Graphistry visual graph analyzer
Organization: graphistry
graph visualization gpu graphistry python rapids cugraph networkx neo4j tigergraph

infosecb / awesome-detection-engineering
splunk,Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
User: infosecb
detection-engineering splunk mitre awesome-list awesome cybersecurity threat-detection

inodee / threathunting-spl
splunk,Splunk code (SPL) for serious threat hunters and detection engineers.
User: inodee
splunk threat-hunting use-case siem rules spl

kebe7jun / ropee
splunk,A scalable prometheus remote storage adapter for splunk.
User: kebe7jun
prometheus splunk remote-write remote-read daocloud

kintyre / ksconf
splunk,Kintyre's Splunk Configuration tool
Organization: kintyre
splunk python splunk-deployment cli

ladder99 / fanuc-driver
splunk,Configurable Fanuc Focas data collector and post processor.
Organization: ladder99
fanuc focas mqtt mtconnect sparkplugb driver influxdb splunk cnc iiot

linmingqiang / sparkstreaming
splunk,:boom: :rocket: 封装sparkstreaming动态调节batch time(有数据就执行计算)；:rocket: 支持运行过程中增删topic；:rocket: 封装sparkstreaming 1.6 - kafka 010 用以支持 SSL。
User: linmingqiang
Home Page: https://github.com/LinMingQiang/sparkstreaming
spark kafka ssc-dstream sparkstreaming spark-kafka spark-es spark-kudu spark-hbase hbase kafka-spark

loginsoft-llc / threat-detection-rules
splunk,Threat Detection & Anomaly Detection rules for popular open-source components
Organization: loginsoft-llc
siem threat-detection sigma elasticsearch anomaly-detection threat-hunting splunk

m3nix / sigmaio
splunk,simple webapp for converting sigma rules into siem queries using the pySigma library
User: m3nix
Home Page: https://sigmaio.app
detection-engineering sigma splunk pysigma

mthcht / threathunting-keywords
splunk,Awesome list of keywords and artifacts for Threat Hunting sessions
User: mthcht
Home Page: https://mthcht.github.io/ThreatHunting-Keywords/
awesome-list blueteam detection-engineering endpoint-security iocs offensive-scripts offensive-security redteam siem soc

mulesoft-catalyst / metrics-toolkit
splunk,The metrics toolkit (formerly metrics accelerator/framework) is a Mule application intended to collect, aggregate and load platform metrics into different visualization systems; providing out of the box integrations and visualization options, including useful dashboards and charts.
Organization: mulesoft-catalyst
metrics-framework metrics-accelerator platform-metrics splunk metrics-toolkit

nheijmans / malzoo
splunk,Mass static malware analysis tool
User: nheijmans
Home Page: https://www.sans.org/reading-room/whitepapers/threathunting/automated-analysis-abuse-mailbox-employees-malzoo-37207
python wiki-page splunk mongodb elasticsearch malware-analysis automation email-parsing

nsacyber / certificate-authority-situational-awareness
splunk,Identifies unexpected and prohibited certificate authority certificates on Windows systems. #nsacyber
Organization: nsacyber
certificate certificates certificate-authorities certificate-authority splunk windows

nsacyber / splunk-assessment-of-mitigation-implementations
splunk,Automatically scores how well Windows systems have implemented some of the top 10 Information Assurance mitigation strategies. #nsacyber
Organization: nsacyber
windows splunk compliance audit auditing scoring assessment

olafhartong / threathunting
splunk,A Splunk app mapped to MITRE ATT&CK to guide your threat hunts
User: olafhartong
splunk mitre-attack threat-hunting dfir

orlangure / gnomock
splunk,Test your code without writing mocks with ephemeral Docker containers 📦 Setup popular services with just a couple lines of code ⏱️ No bash, no yaml, only code 💻
User: orlangure
cockroachdb docker elasticsearch end-to-end-testing go golang hacktoberfest integration-testing kafka kubernetes mariadb memcached mongo mysql postgres rabbitmq redis splunk sql-server testing

p4t12ick / ypsilon
splunk,Automated Use Case Testing
User: p4t12ick
siem malware ansible splunk elk cuckoo use-case security

paloaltonetworks / splunk-apps
splunk,Palo Alto Networks App for Splunk leverages the data visibility provided by Palo Alto Networks next-generation firewalls and endpoint security with Splunk's extensive investigation and visualization capabilities to deliver an advanced security reporting and analysis tool.
Organization: paloaltonetworks
Home Page: https://splunk.paloaltonetworks.com
palo-alto-networks splunk firewall endpoint-protection analysis data-visibility visualization ngfw featured pan-os

pe3zx / crowdstrike-falcon-queries
splunk,A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon
User: pe3zx
threat-hunting crowdstrike splunk

prbinu / dmarc-report-processor
splunk,Scripts to pull DMARC reports from your mailbox (imap client) and convert it to Splunk friendly comma-separated key-value format
User: prbinu
dmarc imap-client attachment splunk dmarc-reports dmarc-convertor gmail imap dmarc-parser python

randgalt / maple
splunk,Type-safe, consistently named and formatted, structured logging wrapper for SLF4J that's ideally suited for your logging aggregator.
User: randgalt
logging slf4j splunk elasticsearch logstash

reidmorrison / semantic_logger
splunk,Semantic Logger is a feature rich logging framework, and replacement for existing Ruby & Rails loggers.
User: reidmorrison
Home Page: https://logger.rocketjob.io/
bugsnag elasticsearch logging rails-semantic-logger splunk syslog

safernandez666 / kong-api-manager
splunk,Kong API Manager with Prometheus And Graylog
User: safernandez666
grafana prometheus api docker docker-compose kong konga siem splunk security

sduff / awesome-splunk
splunk, A collection of awesome resources for Splunk
User: sduff
awesome awesome-list splunk splunk-resources

siddharthajuprod07 / youtube
splunk,This repo will have all the data and codes I have used for my youtube channel
User: siddharthajuprod07
Home Page: https://www.youtube.com/channel/UC3tExxdDT9plEIwKWfoCNNw
splunk youtube youtube-channel python javascript

siglens / siglens
splunk,100x Efficient Log Management than Splunk :rocket: Reduce your observability cost by 90%
Organization: siglens
Home Page: https://www.siglens.com
distributed-tracing go hacktoberfest log-management log-search logging logs monitoring newrelic observability opensource opentelemetry splunk

sigmahq / sigma
splunk,Main Sigma Rule Repository
Organization: sigmahq
security monitoring siem logging signatures elasticsearch splunk ids sysmon

splunk / addonfactory-ucc-generator
splunk,A framework to generate UI-based Splunk Add-ons.
Organization: splunk
Home Page: https://splunk.github.io/addonfactory-ucc-generator/
splunk cli code-generation framework python

splunk / ansible-role-for-splunk
splunk,Splunk@Splunk's Ansible role for installing Splunk, upgrading Splunk, and installing apps/addons on Splunk deployments (VM/bare metal)
Organization: splunk
splunk-upgrade splunk-deployments splunk-admins splunk-forwarder splunk ansible anisble-role ansible-role-for-splunk splunk-installations splunk-role

splunk / fluent-plugin-splunk-hec
splunk,This is the Fluentd output plugin for sending events to Splunk via HEC.
Organization: splunk
fluentd plugin splunk hec

splunk / security_content
splunk,Splunk Security Content
Organization: splunk
Home Page: https://research.splunk.com
splunk detection engineering responses cicd cybersecurity detection-engineering

splunk / splunk-connect-for-ethereum
splunk,Splunk Connect for Ethereum
Organization: splunk
splunk ethereum quorum abi

splunk / splunk-connect-for-kubernetes
splunk,Helm charts associated with kubernetes plug-ins
Organization: splunk
kubernetes chart splunk helm helm-chart

splunk / splunk-connect-for-syslog
splunk,Splunk Connect for Syslog
Organization: splunk
splunk syslog

splunk / splunk-platform-automator
splunk,Ansible framework providing a fast and simple way to spin up complex Splunk environments.
Organization: splunk
splunk splunk-enterprise vagrant virtualbox ansible aws ansible-playbooks splunk-environment

truvis / cheatsheets
splunk,Collection of scripts, files, and tips to create and maintain networks, hack, and more!
User: truvis
Home Page: https://github.com/Truvis/CheatSheets
windows linux opnsense pfsense splunk elkstack snmp siem network-monitoring security-tools

truvis / splunkdashboards
splunk,Collection of Dashboards for Threat Hunting and more!
User: truvis
splunk splunk-application splunk-enterprise splunk-addon splunk-http splunk-impact-cloud splunk-alerts dashboard dashboards dashboard-templates

vavarachen / evtx2json
splunk,A tool to convert Windows evtx files (Windows Event Log Files) into JSON format and log to Splunk (optional) using HTTP Event Collector.
User: vavarachen
python3 splunk security-tools

west-wind / threat-hunting-with-splunk
splunk,Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise
User: west-wind
detection splunk mitre-attack bpfdoor vulnerability bpfdoor-detection text4shell detection-engineering esxi-malware esxi-ransomware

wuyichen24 / spring-microservices-in-action
splunk,The source code of the book "Spring Microservices in Action (John Carnell)" and the personal summary of technical essentials about Spring Boot for microservices.
User: wuyichen24
spring-boot microservices netflix-eureka netflix-zuul netflix-hystrix netflix-ribbon kafka redis netflix netflix-oss

yorokobi / vim-splunk
splunk,Syntax highlighting for Splunk .conf files
User: yorokobi
Home Page: http://yorokobi.github.io/vim-splunk/
splunk syntax-highlighting

zach-taylor / splunk_handler
splunk,Python logging handler for sending logs to Splunk Enterprise
User: zach-taylor
python logging splunk aws-lambda

zentralopensource / zentral
splunk,Zentral is a high-visibility platform for controlling Apple endpoints in enterprises. It brings great observability to IT and makes tracking & reporting compliance much less manual.
Organization: zentralopensource
Home Page: https://www.zentral.com
macos inventory elasticsearch endpoint-management endpoint-security events gitops jamf mdm munki