Projects in Awesome Lists tagged with splunk

https://github.com/openobserve/openobserve

🚀 10x easier, 🚀 140x lower storage cost, 🚀 high performance, 🚀 petabyte scale - Elasticsearch/Splunk/Datadog alternative for 🚀 (logs, metrics, traces, RUM, Error tracking, Session replay).

analytics apm datadog elasticsearch grafana jaeger kibana log-analytics log-management log-search logs metrics monitoring observability openobserve opentelemetry prometheus rust-lang splunk traces

Last synced: 29 Dec 2025

https://github.com/sigmahq/sigma

Main Sigma Rule Repository

elasticsearch ids logging monitoring security siem signatures splunk sysmon

Last synced: 09 Sep 2025

https://github.com/SigmaHQ/sigma

Main Sigma Rule Repository

elasticsearch ids logging monitoring security siem signatures splunk sysmon

Last synced: 24 Mar 2025

https://github.com/graphistry/pygraphistry

PyGraphistry is a Python library to quickly load, shape, embed, and explore big graphs with the GPU-accelerated Graphistry visual graph analyzer

csv cudf cugraph gpu graph graph-visualization graphistry igraph jupyter neo4j network-analysis network-visualization networkx pandas python rapids splunk tigergraph visualization webgl

Last synced: 13 May 2025

https://github.com/orlangure/gnomock

Test your code without writing mocks with ephemeral Docker containers 📦 Setup popular services with just a couple lines of code ⏱️ No bash, no yaml, only code 💻

cockroachdb docker elasticsearch end-to-end-testing go golang hacktoberfest integration-testing kafka kubernetes mariadb memcached mongo mysql postgres rabbitmq redis splunk sql-server testing

Last synced: 14 May 2025

https://github.com/splunk/security_content

Splunk Security Content

cicd cybersecurity detection detection-engineering engineering responses splunk

Last synced: 13 May 2025

https://github.com/siglens/siglens

100x Efficient Log Management than Splunk :rocket: Reduce your observability cost by 90%

distributed-tracing go hacktoberfest log-management log-search logging logs monitoring newrelic observability opensource opentelemetry splunk

Last synced: 14 May 2025

https://github.com/olafhartong/threathunting

A Splunk app mapped to MITRE ATT&CK to guide your threat hunts

dfir mitre-attack splunk threat-hunting

Last synced: 24 Mar 2025

https://github.com/olafhartong/ThreatHunting

A Splunk app mapped to MITRE ATT&CK to guide your threat hunts

dfir mitre-attack splunk threat-hunting

Last synced: 24 Mar 2025

https://github.com/reidmorrison/semantic_logger

Semantic Logger is a feature rich logging framework, and replacement for existing Ruby & Rails loggers.

bugsnag elasticsearch logging rails-semantic-logger splunk syslog

Last synced: 13 May 2025

https://github.com/zentralopensource/zentral

Zentral is a high-visibility platform for controlling Apple endpoints in enterprises. It brings great observability to IT and makes tracking & reporting compliance much less manual.

apple-mdm elasticsearch endpoint-management endpoint-security events gitops inventory jamf macos mdm munki osquery santa splunk sumologic terraform unified-view

Last synced: 30 Mar 2025

https://mthcht.github.io/ThreatHunting-Keywords/

Awesome list of keywords and artifacts for Threat Hunting sessions

awesome-list blueteam detection-engineering dfir elk-stack endpoint-security forensic hacktools incident-response iocs offensive-scripts offensive-security redteam siem soc splunk threat-hunting threat-intelligence threathunting yara-rules

Last synced: 10 Apr 2025

https://github.com/ANSSI-FR/ADTimeline

Timeline of Active Directory changes with replication metadata

active-directory dfir forensics powershell splunk timeline windows

Last synced: 18 Jul 2025

https://github.com/blackhillsinfosec/EventLogging

Automation scripts to deploy Windows Event Forwarding, Sysmon, and custom audit policies in an Active Directory environment.

active-directory elasticsearch powershell splunk threat-hunting windows-event-collector windows-event-logs

Last synced: 29 Jul 2025

https://github.com/dicklesworthstone/automatic_log_collector_and_analyzer

Replace Splunk in your small company with this one weird trick!

ingestion log logging splunk

Last synced: 16 May 2025

https://github.com/splunk/splunk-connect-for-kubernetes

Helm charts associated with kubernetes plug-ins

chart helm helm-chart kubernetes splunk

Last synced: 11 Oct 2025

https://github.com/ecstatic-nobel/OSweep

Don't Just Search OSINT. Sweep It.

certificate-transparency cybercrime cybersecurity malware-analysis osint pivoting python ransomware scanners splunk threat-analysis threat-hunting threat-intelligence threatcrowd urlhaus urlscan-io

Last synced: 11 Jul 2025

https://github.com/inodee/threathunting-spl

Splunk code (SPL) for serious threat hunters and detection engineers.

rules siem spl splunk threat-hunting use-case

Last synced: 09 Oct 2025

https://github.com/cloudmarker/cloudmarker

Cloud security monitoring tool and framework

azure cloud cloud-security cloud-security-audit elasticsearch email google-cloud-platform mongodb security security-audit security-tools slack splunk

Last synced: 29 Apr 2025

https://github.com/splunk/ansible-role-for-splunk

Splunk@Splunk's Ansible role for installing Splunk, upgrading Splunk, and installing apps/addons on Splunk deployments (VM/bare metal)

anisble-role ansible ansible-playbooks ansible-role-for-splunk automation configuration-management git splunk splunk-admins splunk-ansible splunk-apps splunk-deployments splunk-forwarder splunk-installations splunk-role splunk-universal-forwarders splunk-upgrade

Last synced: 11 Oct 2025

https://github.com/p4t12ick/ypsilon

Automated Use Case Testing

ansible cuckoo elk malware security siem splunk use-case

Last synced: 12 Apr 2025

https://github.com/P4T12ICK/ypsilon

Automated Use Case Testing

ansible cuckoo elk malware security siem splunk use-case

Last synced: 09 May 2025

https://github.com/splunk/splunk-connect-for-syslog

Splunk Connect for Syslog

splunk syslog

Last synced: 11 Oct 2025

https://github.com/siddharthajuprod07/youtube

This repo will have all the data and codes I have used for my youtube channel

javascript python splunk youtube youtube-channel

Last synced: 10 Oct 2025

https://github.com/splunk/splunk-platform-automator

Ansible framework providing a fast and simple way to spin up complex Splunk environments.

ansible ansible-playbooks aws splunk splunk-enterprise splunk-environment vagrant virtualbox

Last synced: 11 Oct 2025

https://github.com/paloaltonetworks/splunk-apps

Palo Alto Networks App for Splunk leverages the data visibility provided by Palo Alto Networks next-generation firewalls and endpoint security with Splunk's extensive investigation and visualization capabilities to deliver an advanced security reporting and analysis tool.

analysis cortex-data-lake cortex-xdr data-visibility endpoint-protection featured firewall globalprotect ngfw palo-alto-networks pan-os prisma-access prisma-cloud-compute-edition prisma-saas splunk visualization vm-series

Last synced: 14 Aug 2025

https://github.com/splunk/fluentd-hec

This is the Fluentd output plugin for sending events to Splunk via HEC.

fluentd hec plugin splunk

Last synced: 11 Oct 2025

https://github.com/anvilogic-forge/armory

Anvilogic Forge

detection detection-engineering snowflake splunk threat-hunting

Last synced: 31 Mar 2025

https://github.com/mf1d3l/Splunk4DFIR

Harness the power of Splunk for your investigations

dfir incident-response splunk threat-hunting

Last synced: 10 Apr 2025

https://github.com/kebe7jun/ropee

A scalable prometheus remote storage adapter for splunk.

daocloud prometheus remote-read remote-write splunk

Last synced: 09 Apr 2025

https://github.com/splunk/rba

RBA is Splunk's method to aggregate low-fidelity security events as interesting observations tagged with security metadata to create high-fidelity, low-volume alerts.

rba splunk splunk-rba

Last synced: 11 Oct 2025

https://github.com/splunk/splunk-mltk-container-docker

Splunk App for Data Science and Deep Learning - container images repository

agentic ai artificial-intelligence data-science deep-learning docker llm machine-learning rag splunk splunk-ai

Last synced: 11 Oct 2025

https://github.com/zach-taylor/splunk_handler

Python logging handler for sending logs to Splunk Enterprise

aws-lambda logging python splunk

Last synced: 05 Apr 2025

https://github.com/randgalt/maple

Type-safe, consistently named and formatted, structured logging wrapper for SLF4J that's ideally suited for your logging aggregator.

elasticsearch logging logstash slf4j splunk

Last synced: 15 Apr 2025

https://github.com/signalfx/splunk-otel-js-web

Splunk distribution of Open Telemetry for browser environment.

javascript opentelemetry splunk

Last synced: 11 Apr 2025

https://github.com/wazuh/wazuh-splunk

Wazuh - Splunk App

compliance file-integrity-management gdpr ids intrusion-detection log-analysis loganalyzer monitoring openscap ossec pci-dss policy-monitoring security security-awareness security-hardening splunk vulnerability-detection wazuh

Last synced: 08 Sep 2025

https://github.com/splunk/splunk-connect-for-ethereum

Splunk Connect for Ethereum

abi ethereum quorum splunk

Last synced: 10 May 2025

https://github.com/paulveillard/cybersecurity-incident-response

A collection of awesome tools, software, libraries, learning tutorials & videos, frameworks, best practices and technical resources about Incident Response & Management in Cybersecurity

alerts alertsmanager cybersecurity-education cybersecurity-incident-response cybersecurity-incidents datadog incident incident-management incident-response incident-response-tooling incidents-reports on-call pagerduty splunk splunk-application victorops

Last synced: 28 Mar 2025

https://github.com/west-wind/Threat-Hunting-With-Splunk

Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise

arcanedoor bpfdoor bpfdoor-detection cve-2024-20353 cve-2024-20359 detection detection-engineering esxi-malware esxi-ransomware line-dancer line-runner mitre-attack rtm-locker splunk text4shell vulnerability

Last synced: 31 Mar 2025

https://github.com/serilog-contrib/serilog-sinks-splunk

A Serilog sink that writes to Splunk

serilog serilog-sink splunk

Last synced: 26 Jun 2025

https://github.com/mhaggis/sysmon-splunk-app

Sysmon Splunk App

splunk sysmon

Last synced: 13 Apr 2025

https://github.com/googlecloudplatform/terraform-splunk-log-export

Deploy Google Cloud log export to Splunk using Terraform

dataflow gcp google-cloud-platform pubsub splunk splunk-hec

Last synced: 20 Oct 2025

https://github.com/cesarbmx/crypto-watcher-api

C# .NET Core + DDD + Hangfire + Swagger + Automapper + FluentValidation + Serilog + EF Core

audit-repository automapper bot crypto crypto-watcher cryptobot cryptocurrency csharp ddd entity-framework-core fluent-validation generic-repository hangfire microservices netcore rest-api serilog splunk swagger swashbuckle

Last synced: 04 May 2025

https://github.com/splunk/splunk-connect-for-snmp

Splunk connect for SNMP

snmp splunk

Last synced: 11 Oct 2025

https://github.com/mhaggis/app_splunk_sysmon_hunter

Splunk App to assist Sysmon Threat Hunting

splunk sysmon threat

Last synced: 13 Apr 2025

https://github.com/olafhartong/ta-sysmon-deploy

Deploy and maintain Symon through the Splunk Deployment Sever

dfir splunk splunk-deployment sysmon threat-hunting

Last synced: 06 Oct 2025

https://github.com/azure/splunk-enterprise

Guidance on deploying Splunk Enterprise on Azure with automated reference implementation

azure splunk

Last synced: 04 Sep 2025

https://github.com/mercedes-benz/ansible-for-splunk-cloud

Ansible playbooks for configuring and managing Splunk Cloud deployments with the Admin Config Service (ACS) API

acs ansible cicd cloud splunk

Last synced: 09 Apr 2025

https://github.com/jcustenborder/kafka-connect-splunk

Kafka Connect connector for receiving data and writing data to Splunk.

kafka-connect splunk splunk-http

Last synced: 21 Mar 2025

https://github.com/splunk/public-o11y-docs

Splunk Observability Cloud docs

docs o11y observability splunk

Last synced: 11 Oct 2025

https://github.com/falon/rbl

A complete, more than an RBL Management System

antispam dnsbl dspam php postfix rbl rbl-management rbl-manager rbldns-format rblms spam-filtering spamassassin splunk uribl

Last synced: 30 Apr 2025

https://github.com/secnnet/splunk-search-queries

splunk splunk-addon splunk-app splunk-dashboard splunk-enterprise splunk-queries splunk-search splunk-ta

Last synced: 25 Feb 2025

https://github.com/clong/vagrant-ids

An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk

bro-ids information-security intrusion-detection intrusion-detection-system splunk suricata vagrant vagrantfile

Last synced: 26 Jul 2025

https://github.com/mthcht/lookup-editor_scripts

scripts using splunk application lookup-editor endpoint. Download, upload and update splunk lookups content

api automation lookup lookup-editor lookup-table lookups soar splunk splunkcloud update upload

Last synced: 10 Oct 2025

https://github.com/thiagobarradas/restsharp-serilog-auto

Automatic log request and response from RestSharp using Serilog

auto automatic dotnet dotnet-core log logger logging request response rest restsharp seq serilog serilog-enricher serilog-extension splunk

Last synced: 09 Apr 2025

https://github.com/EliteLoser/ConvertTo-Json

Svendsen Tech's ConvertTo-STJson is a pure-PowerShell ConvertTo-Json for PowerShell version 2

convertto-json convertto-stjson json json-api powershell powershell-module powershell-script psv2 splunk splunk-http svendsentech

Last synced: 10 Apr 2025

https://github.com/splunk/splunk-tableau-wdc

Splunk Tableau Web Data Connector (WDC) Example

splunk tableau wdc

Last synced: 11 Oct 2025

https://github.com/fuyufjh/splunk-hec-go

Splunk HTTP Event Collector (HEC) Golang library

golang-library splunk

Last synced: 22 Mar 2025

https://github.com/splunk/addonfactory-solutions-library-python

SDK for Developing Solutions in Splunk Enterprise with Python

sdk sdk-python splunk

Last synced: 11 Oct 2025

https://github.com/swisscom/splunk-addon-powershell

Splunk Add-on for PowerShell provides field extraction for PowerShell event logs.

powershell splunk splunk-addon

Last synced: 15 Apr 2025

https://github.com/barrycommins/spring-boot-splunk-sleuth-demo

Sample project to show log forwarding from a Spring Boot application to Splunk via a file forwarder.

sleuth splunk spring-boot

Last synced: 30 Apr 2025

https://github.com/dmuth/twitter-aws-comprehend

An app to analyze tweets using Amazon Comprehend's Sentiment Analysis service

analyze-tweets aws nlp sentiment-analysis splunk tweets twitter

Last synced: 12 Apr 2025

https://github.com/secnnet/crowdstrike-falcon-search-queries

crowdstrike dashboards detection falcon incident-response queries splunk threat-hunting

Last synced: 25 Feb 2025

https://github.com/splunk/deep-learning-toolkit

Deep Learning Toolkit for Splunk

dask kubernetes pytorch spark splunk tensorflow

Last synced: 11 Oct 2025

https://github.com/ryancurrah/searchsplunk

Easily create Splunk searches from Python and get the result as a Python object.

python search splunk splunk-searches

Last synced: 31 Jul 2025

https://github.com/anonymity94/spl2dsl

Convert Splunk SPL to Elasticsearch DSL with pegjs

dsl elasticsearch pegjs splunk

Last synced: 09 Apr 2025

https://github.com/splunk/collectd-plugins

SAI x Collectd: https://docs.splunk.com/Documentation/InfraApp/latest/Admin/ManageAgents

collectd splunk

Last synced: 11 Oct 2025

https://github.com/fdmsantos/terraform-aws-kinesis-firehose

Dynamic Terraform module, which creates a Kinesis Firehose Stream and others resources like Cloudwatch, IAM Roles and Security Groups that integrate with Kinesis Firehose. Supports all destinations and all Kinesis Firehose Features.

aws coralogix datadog dynatrace elasticsearch honeycomb kinesis-firehose logicmonitor mongodb msk newrelic opensearch opensearch-serverless redshift s3 snowflake splunk sumologic terraform terraform-module

Last synced: 14 Apr 2025

https://github.com/jay-johnson/spylunking

Drill down into your python logs using JSON logs stored in Splunk - supports sending over TCP or the Splunk HEC REST API handlers (using threads or multiprocessing) - includes a pre-configured Splunk sandbox in a docker container

docker python python-logger python-logging splunk splunk-hec splunk-http splunk-sdk splunk-searches

Last synced: 12 Jun 2025

https://github.com/splunk/ta-misp_es

MISP to Splunk Enterprise Security Theat Intelligence Framework Integration

enterprise-security misp splunk threat-intelligence

Last synced: 11 Oct 2025

https://github.com/shakeelmohamed/sublime-splunk-conf-highlighting

Syntax highlighting for Splunk .conf files in Sublime Text 2 & 3

conf-files configuration-file highlighting splunk splunk-enterprise sublime-text syntax-highlighting

Last synced: 28 Oct 2025

https://github.com/edson-a-soares/java_web_developer_nanodegree

It contains snippets, exercises, and solutions for the Udacity Java Web Developer Nanodegree.

aws bootstrap-template devops dockerized-infrastructure h2-database hibernate-orm jenkins-ci junit-test jwt-authentication microservices-architecture mybatis mysql-database pipeline-as-code restful-webservices selenium-tests splunk springframework swagger-documentation thymeleaf udacity-nanodegree

Last synced: 10 Apr 2025

https://github.com/vulnerscom/splunk-vulners

Splunk Vulnerability Assessment Plugin

scaner splunk splunk-dashboard vulnerability vulnerability-assessment vulners

Last synced: 01 May 2025

https://github.com/bugthesystem/k8splunk

Send kubernetes logs to splunk using fluentd

fluentd helm kubernetes logging splunk

Last synced: 26 Oct 2025

https://github.com/chris-peterson/spiffy

A structured logging framework for .NET that supports log aggregation, e.g. Splunk

csharp dotnet dotnet-core instrumentation key-value-pairs logging metrics monitoring prometheus splunk splunk-enterprise structured-logging

Last synced: 21 Mar 2025

https://github.com/iamshobe/cruncher

Your logs, Your data - crunch it however you like

dashboard logs observability query-language splunk

Last synced: 01 Aug 2025

https://github.com/billyJoePiano/TenaPull

TenaPull is a configurable Java application which fetches and processes the data from one or more Nessus APIs, and converts it into JSON ouputs that are usable by Splunk

java nessus security splunk

Last synced: 11 Jul 2025

https://github.com/mr-xn/cve-2024-36991

Path Traversal On The "/Modules/Messaging/" Endpoint In Splunk Enterprise On Windows

cve cve-2024 cve-2024-36991 path-traversal splunk

Last synced: 22 Mar 2025

https://github.com/splunk/process_flow_diagram_app

Splunk Enterprise Modular Visualization for process flows and process models models.

splunk visualization

Last synced: 11 Oct 2025

https://github.com/jamesbower/engagedthreat

The goal of Engaged Threat is to provide honeypot researchers the ability to hold the attention of an attacker or to induce the attacker to participate in some sort of increased activity.

cowrie honeypot security splunk ssh threat-analysis threat-intelligence threat-sharing threatintel

Last synced: 12 May 2025

https://github.com/ajackal/splunk

Splunk scripts and config files.

powershell powershell-script splunk

Last synced: 25 Aug 2025

https://github.com/paloaltonetworks/prisma-cloud-compute-splunk

Splunk app for ingesting Prisma Cloud Compute incidents and forensics

prisma-cloud prisma-cloud-compute-edition splunk

Last synced: 03 May 2025

https://github.com/bonifield/logstash-to-splunk

writeup about sending Logstash data to Splunk using the HTTP Event Collector

elasticsearch filebeat kafka logstash metricbeat splunk splunk-enterprise splunk-hec splunk-universal-forwarder winlogbeat

Last synced: 07 May 2025

https://github.com/nextpart/defender_ta_nxtp

Download :package: from splunkbase.

microsoft splunk windows-defender

Last synced: 29 Oct 2025

https://github.com/nextpart/spl-manager

This library is an abstraction for Splunk-related development, maintenance, or migration operations. It provides a single CLI or SDK to conveniently perform various operations such as managing a local development container, retrieving sample-data, building applications, comparing instances, managing knowledge objects and much more in the future.

splunk splunk-cli splunk-cloud splunk-enterprise

Last synced: 29 Oct 2025