Harness the power of Splunk for your investigations

Install a full Splunk Enterprise Cluster or Universal forwarder using an ansible playbook

Various Splunk Scripts and applets, all in one place

Guidance on deploying Splunk Enterprise on Azure with automated reference implementation

An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk

Ansible playbook for installing Splunk 6 on an AWS infrastruture

Official, Most Trusted DevOps Certifications. We are helping organizations to build high performing DevOps teams.

Postfix Add-on for Splunk (Compliant with the Mail CIM model)

This repository contains projects and activities that have been completed within the CyberSecurity Bootcamp.

A dockerized demo for illustrating how Confluent can be used in a SIEM Modernization use case.

The goal of Engaged Threat is to provide honeypot researchers the ability to hold the attention of an attacker or to induce the attacker to participate in some sort of increased activity.

An AWS EC2 user data script to deploy Splunk with Apps retrieved from S3 and without any popup.

This repo is for community scripts to be shared from. These scripts are community focused and not supported or endorsed by Splunk, use at your own risk

ネットワーク機器のログをSplunkのUniversal Forwarderを利用してConfluentに転送し、ストリーム処理後にSplunkのHECに転送するサンドボックス環境。

Using Snowflake as a data lake for Splunk

Splunk topics with detailed explanation

This has been merged into the Game repository and no longer used.

Dockerize the Splunk AppInspect tool.

A simple shell script to upgrade Splunk