Skip to content
/ vigil-splunk-parser Public

A Logstash based solution to pull and convert Splunk IDS events into Savvius Vigil events

License

Apache-2.0 license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

spacepacket/vigil-splunk-parser

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
csv2vigil.conf
csv2vigil.conf
 
 
search.py
search.py
 
 
sf2vigil.conf
sf2vigil.conf
 
 
splunk2csv.py
splunk2csv.py
 
 
splunk2csv.sh
splunk2csv.sh
 
 

Repository files navigation

Vigil Splunk Parser

A Logstash based solution to pull and convert Splunk events into Savvius Vigil events

This repository contains the instructions and files necessary to get IDS events from Splunk into Savvius Vigil. Splunk can be used as SIEM for virtually any IDS. In this example, we use snort.

Refer to the wiki for detailed instructions.

About

A Logstash based solution to pull and convert Splunk IDS events into Savvius Vigil events

Resources

Readme

License

Apache-2.0 license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages