Splunk Security Content Logo

Splunk Security Content

0
Free
SIEM
splunk
threat-detection
incident-response
mitre-attack
Visit Website

Welcome to the Splunk Security Content. This project provides access to a repository of Analytic Stories, security guides that offer insights into tactics, techniques, and procedures (TTPs) mapped to the MITRE ATT&CK Framework, Lockheed Martin Cyber Kill Chain, and CIS Controls. It includes Splunk searches, machine learning algorithms, and Splunk Phantom playbooks designed to work together for threat detection, investigation, and response. Additionally, there are sister projects like Splunk Attack Range, an attack simulation lab, and Contentctl, a tool for building, testing, and packaging content for distribution.

FEATURES

ALTERNATIVES

Logdissect Logo
Logdissect

Logdissect is a CLI utility and Python library for analyzing log files and other data.

Free
SIEM
GrokEVT Logo
GrokEVT

GrokEVT is a tool for reading Windows event log files and converting them to a human-readable format.

Free
SIEM
LastActivityView Logo
LastActivityView

A tool that collects and displays user activity and system events on a Windows system.

Free
SIEM
RedELK Logo
RedELK

RedELK enhances Red Team operations with SIEM capabilities to monitor and alert on Blue Team activities.

Free
SIEM
python-evtx Logo
python-evtx

A pure Python parser for Windows Event Log files with access to File and Chunk headers, record templates, and event entries.

Free
SIEM
Elastic Security Logo
Elastic Security

Elastic is a search-powered AI company that enables users to find answers from all data in real-time at scale.

Commercial
SIEM
Procmon for Linux Logo
Procmon for Linux

Procmon for Linux is a reimagining of the classic Procmon tool from Windows, allowing Linux developers to trace syscall activity efficiently.

Free
SIEM
Graylog Logo
Graylog

Graylog offers advanced log management and SIEM capabilities to enhance security and compliance across various industries.

Commercial
SIEM

PINNED

InfoSecHired Logo

InfoSecHired

An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Commercial
Resources
Mandos Brief Newsletter Logo

Mandos Brief Newsletter

A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Free
Resources
Kriptos Logo

Kriptos

An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.

Commercial
Data Protection
System Two Security Logo

System Two Security

An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.

Commercial
Security Operations
Aikido Security Logo

Aikido Security

Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.

Commercial
Application Security
Permiso Logo

Permiso

Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.

Commercial
IAM
Wiz Logo

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial
Cloud Security
Adversa AI Logo

Adversa AI

Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.

Commercial
AI Security