Skip to content
@rba-community

The RBA Community

The RBA Community is a group of professionals dedicated to advancing the field of risk-based alerting (RBA) and Splunk Enterprise Security (ES).
README.md

Welcome to The RBA Community GitHub repo! 👋

The RBA Community is a group of professionals dedicated to advancing the field of risk-based alerting (RBA) and Splunk Enterprise Security (ES). Our mission is to provide a forum for sharing knowledge, best practices, and the latest developments in RBA and ES, and to help professionals enhance their understanding and skills in these areas.

Pinned Loading

  1. threat_object_fun threat_object_fun Public

    An illustrative app for working with Threat Objects.

    1

  2. SA-PaloAltoIoTDevices SA-PaloAltoIoTDevices Public

    This supporting add-on comes with prebuilt content for Palo Alto IoT data to be easily used with Splunk Enterprise Security's Asset database.

  3. SA-CortexXDRDevices SA-CortexXDRDevices Public

    This supporting add-on comes with prebuilt content for Palo Alto Networks Cortex XDR data to be easily used with Splunk Enterprise Security's Asset database.

  4. SA-CrowdstrikeIntelIndicators SA-CrowdstrikeIntelIndicators Public

    This supporting add-on Adds CrowdStrike's intelligence indicators to Splunk Enterprise Security's threat framework.

    1

Repositories

Showing 8 of 8 repositories
  • rba-community Public

    Website for the RBA Community

    rba-community/rba-community’s past year of commit activity
    HTML 1 1 0 3 Updated Nov 27, 2024
  • TA-opnsense Public

    Splunk Add on for OPNsense firewall

    rba-community/TA-opnsense’s past year of commit activity
    Python 1 Apache-2.0 1 0 3 Updated Sep 30, 2024
  • Opnsense_App_for_Splunk Public

    Provides visualizations for the OPNsense Firewall.

    rba-community/Opnsense_App_for_Splunk’s past year of commit activity
    0 Apache-2.0 0 0 3 Updated Sep 30, 2024
  • SA-CrowdstrikeIntelIndicators Public

    This supporting add-on Adds CrowdStrike's intelligence indicators to Splunk Enterprise Security's threat framework.

    rba-community/SA-CrowdstrikeIntelIndicators’s past year of commit activity
    1 Apache-2.0 0 0 0 Updated Oct 20, 2023
  • SA-CortexXDRDevices Public

    This supporting add-on comes with prebuilt content for Palo Alto Networks Cortex XDR data to be easily used with Splunk Enterprise Security's Asset database.

    rba-community/SA-CortexXDRDevices’s past year of commit activity
    0 Apache-2.0 0 0 0 Updated Oct 20, 2023
  • SA-PaloAltoIoTDevices Public

    This supporting add-on comes with prebuilt content for Palo Alto IoT data to be easily used with Splunk Enterprise Security's Asset database.

    rba-community/SA-PaloAltoIoTDevices’s past year of commit activity
    0 Apache-2.0 0 0 0 Updated Oct 10, 2023
  • .github Public
    rba-community/.github’s past year of commit activity
    0 0 0 0 Updated Sep 28, 2023
  • threat_object_fun Public

    An illustrative app for working with Threat Objects.

    rba-community/threat_object_fun’s past year of commit activity
    1 MIT 0 0 0 Updated Jun 6, 2023

People

This organization has no public members. You must be a member to see who’s a part of this organization.

Top languages

Loading…

Most used topics

Loading…