mrpappagiorgio

followers

following

stars

mrpappagiorgio's starred repositories

splunk-cisco-landscape-better-together

Splunk and Cisco Landscape | products, apps, integrations, and overall better together story in a visual way.

Apache-2.0100

SA-CrowdstrikeIntelIndicators

This supporting add-on Adds CrowdStrike's intelligence indicators to Splunk Enterprise Security's threat framework.

Apache-2.0100

ocsf

My custom splunk configs for ocsf compliance

100

splunk-otel-example

Jek personal examples on ingestion setup for Splunk Otel. These are not the official examples from Splunk.

Language:C#700

TA-ad-assets-identities

Dump all users, groups and computers from an Active Directory domain into an asset and identities lookup usable by Splunk Enterprise Security.

Language:Python700

community-splunk-scripts

This repo is for community scripts to be shared from. These scripts are community focused and not supported or endorsed by Splunk, use at your own risk

Language:Shell400

Splunk-Scripts

Language:PythonMIT100

splunk-common-commands

Language:REXX100

Splunk

This repository is a comprehensive collection of resources, documentation, apps, and add-ons related to Splunk, a powerful data analytics and monitoring platform. The repository contains several Markdown files and other that provide valuable information and instructions for various aspects of working with Splunk.

MIT1700

Splunk_Hec

This repository contains some code snippets for creating a Splunk HTTP HEC, pulling some data from GBQ, and ingesting it into Splunk Enterprise

Language:Python100

SysmonCommunityGuide

TrustedSec Sysinternals Sysmon Community Guide

Language:CSS109600

hosts

🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.

Language:PythonMIT2572800

splunkutils

powershell module for interacting with splunk resources via rest

Language:PowerShell100

SplunkSavedSearchInfoApp

200

Splunk-Inputs-WinSysAdminToolkit

MIT100

Purpleteam

Purpleteam scripts simulation & Detection - trigger events for SOC detections

Language:PowerShell12600

ThreatHunting-Keywords

Awesome list of keywords and artifacts for Threat Hunting sessions

Language:HTML35300

SPlunk-Queries_Detection

Splunk Detections

GPL-3.0300

splunk-cloud-storage-calculator

DDAA DDAS Storage forecaster

100

PLA1101B

Clara-Fication Workshop: Understanding the Expensive Bits in Your Splunk Environment

1400

splunk-cloud-automation

Splunk Cloud various automation stuffs

Language:Python1000

splunk_cluster_admin_kit

Language:CSS200

Event-Forwarding-Guidance

Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsacyber

Language:PowerShellNOASSERTION84000

auditd-config

Apache-2.0100

SplunkForwarderRepairKit

Scripted inputs designed to address common use-cases in forwarder misconfigurations in a Splunk deployment

Language:PowerShell3100

ingest_eval_examples

100

Splunk.Conf19

Apache-2.03900

splunksecrets

splunksecrets is a tool for working with Splunk secrets offline

Language:Python4300

notes

Full of public notes and Utilities

Language:HTML7700

CheatSheets

Collection of scripts, files, and tips to create and maintain networks, hack, and more!

6600