Skip to content
/ threathunting-spl Public
forked from inodee/threathunting-spl

Splunk code (SPL) for serious threat hunters and detection engineers.

2 stars 41 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

SecurityRiskAdvisors/threathunting-spl

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

39 Commits
hunt-queries
hunt-queries
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
spl_tips_tricks.md
spl_tips_tricks.md
 
 

Repository files navigation

threathunting-spl

This is a repository to store Splunk code (SPL) and prototypes useful for building rules (correlation searches) and queries to find and hunt for malicious activity.

About

Feel free to contribute and share your feedbak in case you find it useful. For more Splunk (and Security) related stuff also check the following :

About

Splunk code (SPL) for serious threat hunters and detection engineers.

Resources

Readme

Security policy

Security policy
Activity
Custom properties

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published