How do you manage thousands of alert definitions, having to mass update them, disable them, deleting chunks of them, etc etc? I do this by hand. Wondering if anyone has any cool suggestions

InfluxDB - Power Real-Time Data Analytics at Scale

Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

www.influxdata.com

featured

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com

featured

gmc

1 2 0.0

Splunk Global Monitoring Console

For just reporting/viewing health things, highly recommend the Global Monitoring Console https://github.com/annettefo/gmc. That branch is 2 years old but talk with your rep, there should be a newer version floating around and I believe also one that's cloud certified.

security_content

20 1,145 9.9 Python

Splunk Security Content

Take a look here https://github.com/splunk/security_content All of the tools, including a yml schema for creation of a deployable savedsearches.conf

InfluxDB

www.influxdata.com featured

Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Help me find a Splunk site that lists hundreds of queries

1 project | /r/Splunk | 3 Aug 2022
Anyone using splunk?

1 project | /r/homelab | 5 Jul 2022
What are your favorite or most useful queries?

1 project | /r/Splunk | 1 Jul 2022
security_content/detections at develop · splunk/security_content · GitHub

1 project | /r/blueteamsec | 8 Feb 2022
Top 10 Use cases for Security Operations

1 project | /r/Splunk | 3 Nov 2021

How do you manage thousands of alert definitions, having to mass update them, disable them, deleting chunks of them, etc etc? I do this by hand. Wondering if anyone has any cool suggestions

This page summarizes the projects mentioned and recommended in the original post on /r/Splunk
Splunk detection-coverage Detection Engineering responses
Post date: 19 Aug 2021

gmc

security_content

InfluxDB

Related posts

Help me find a Splunk site that lists hundreds of queries

Anyone using splunk?

What are your favorite or most useful queries?

security_content/detections at develop · splunk/security_content · GitHub

Top 10 Use cases for Security Operations

How do you manage thousands of alert definitions, having to mass update them, disable them, deleting chunks of them, etc etc? I do this by hand. Wondering if anyone has any cool suggestions

This page summarizes the projects mentioned and recommended in the original post on /r/Splunk Splunk detection-coverage Detection Engineering responses Post date: 19 Aug 2021

gmc

security_content

InfluxDB

Related posts

Help me find a Splunk site that lists hundreds of queries

Anyone using splunk?

What are your favorite or most useful queries?

security_content/detections at develop · splunk/security_content · GitHub

Top 10 Use cases for Security Operations

This page summarizes the projects mentioned and recommended in the original post on /r/Splunk
Splunk detection-coverage Detection Engineering responses
Post date: 19 Aug 2021