SIEM
SIEM Tactics, Techiques, and Procedures (by TonyPhipps)
threathunting-spl
Splunk code (SPL) for serious threat hunters and detection engineers. (by inodee)
SIEM | threathunting-spl | |
---|---|---|
1 | 2 | |
519 | 258 | |
- | - | |
6.3 | 4.1 | |
5 days ago | 4 months ago | |
GNU General Public License v3.0 only | - |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
SIEM
Posts with mentions or reviews of SIEM.
We have used some of these posts to build our list of alternatives
and similar projects.
-
Best practices for SIEM?
This is a good start IMO
threathunting-spl
Posts with mentions or reviews of threathunting-spl.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2022-09-06.
What are some alternatives?
When comparing SIEM and threathunting-spl you can also consider the following projects:
WELA - WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅(ウェラ)
Spring4Shell-Detection - Lazy SPL to detect Spring4Shell exploitation
hunt-searchengine
ansible-role-splunkbase - Ansible role for downloading and installing apps from splunkbase.com
hayabusa - Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
threathunting - A Splunk app mapped to MITRE ATT&CK to guide your threat hunts
Threat_Model_Examples - Collection of Threat Models
security_content - Splunk Security Content
slides-talks - My own cybersecurity research talks/slides
sigma - Main Sigma Rule Repository
TA-UserWatchlist - User Watchlist App for Splunk
SIEM vs WELA
threathunting-spl vs Spring4Shell-Detection
SIEM vs hunt-searchengine
threathunting-spl vs ansible-role-splunkbase
SIEM vs hayabusa
threathunting-spl vs threathunting
SIEM vs Threat_Model_Examples
threathunting-spl vs security_content
SIEM vs slides-talks
threathunting-spl vs sigma
threathunting-spl vs TA-UserWatchlist