serilog-sinks-splunk - A Serilog sink that writes to Splunk

  •        124

A Serilog sink that writes events to the Splunk. Supports .NET 4.5+, .NET Core, and platforms compatible with the .NET Platform Standard 1.1 including Windows 8 & UWP, Windows Phone and Xamarin.More information is available on the wiki.

https://splunk.com
https://github.com/serilog/serilog-sinks-splunk

Tags
Implementation
License
Platform

   




Related Projects

serilog - Simple .NET logging with fully-structured events

  •    CSharp

Serilog is a diagnostic logging library for .NET applications. It is easy to set up, has a clean API, and runs on all recent .NET platforms. While it's useful even in the simplest applications, Serilog's support for structured logging shines when instrumenting complex, distributed, and asynchronous applications and systems.Like many other libraries for .NET, Serilog provides diagnostic logging to files, the console, and many other outputs.

LibLog - LibLog is a single file for you to either copy/paste or install via nuget, into your library/framework/application to provide a logging abstraction

  •    CSharp

Designed specifically for library developers, LibLog is a single file for you to either copy/paste or install via nuget, into your library/framework/application to provide a logging abstraction. It also contains transparent built-in support for NLog, Log4Net, EntLib Logging, Serilog and Loupe, and allows your users to define a custom provider if necessary. Please see Wiki for more information.

common-logging - A portable logging abstraction for .NET

  •    CSharp

*Note: Build may periodically fail due to issues with the code-coverage tooling (NCover) being unable to reliably connect to the test-runner during test-runs on the CI server platform we've selected (Appveyor). Work continues to investigate this further, but until resolved properly visitors are advised to discount failing builds reported here. Provides a simple logging abstraction to switch between different logging implementations. There is current support for log4net, NLog, Microsoft Enterprise Library logging, Microsoft Application Insights, Microsoft Event Tracing for Windows, and Serilog.

docker-splunk - Docker Splunk Enterprise image

  •    Shell

This is the official repository for the Splunk Enterprise and Splunk universal forwarder Docker effort. It contains Dockerfiles that you can use to build Splunk Docker images. To learn more about the Splunk Enterprise Docker image, see the Splunk Enterprise Docker image README.

docker-splunk-legacy - Docker Splunk Enterprise image

  •    Shell

This is the official repository for the Splunk Enterprise and Splunk universal forwarder Docker effort. It contains Dockerfiles that you can use to build Splunk Docker images. To learn more about the Splunk Enterprise Docker image, see the Splunk Enterprise Docker image README.


splunk-sdk-python - Splunk Software Development Kit for Python

  •    Javascript

Splunk Software Development Kit for Python

Free Windows Network User Accounting

  •    Perl

FWNUA (Free Windows Network User Accounting) runs silently in a Windows login script and collects data about user logins. It allows more freedom in standardized computer naming. FWNUA keeps track of the workstations so you don't have to! FWNUA now supports syslog and Splunk! A fork of the current 3.0 version can now be downloaded. Look for the fwnua - syslog in the files list. Use Splunk or your own syslog server with data mining tools to create a robust user tracking system.

tilelive - fast interface to tiles with pluggable backends

  •    Javascript

Tilelive is designed for streaming map tiles from sources (like custom geographic data formats) to sinks (destinations, like file systems) by providing a consistent API. This repository enables the interaction between sources and sinks and is meant to be used in tandem with at least one Tilelive plugin. Tilelive plugins (modules) follow a consistent architecture (defined in API.md) and implement the logic for generating and reading map tiles from a source or putting map tiles to a destination, or both.An example of a plugin that implements both reading (can be a source) and writing (can be a sink) is tilelive-s3.

Transporter - Sync data between persistence engines, like ETL only not stodgy

  •    Go

Compose Transporter helps with database transformations from one store to another. It can also sync from one to another or several stores.Transporter allows the user to configure a number of data adaptors as sources or sinks. These can be databases, files or other resources. Data is read from the sources, converted into a message format, and then send down to the sink where the message is converted into a writable format for its destination. The user can also create data transformations in JavaScript which can sit between the source and sink and manipulate or filter the message flow.

Clarity - Web interface for the grep

  •    Ruby

Clarity is a Splunk like web interface for your server log files. It supports searching (using grep) as well as trailing log files in realtime. It has been written using the event based architecture based on EventMachine and so allows real-time search of very large log files.

angulartics - Analytics for AngularJS applications.

  •    Javascript

**Note: we are dropping support for NuGet.You can also use $analyticsProvider.withBase(true) instead of $analyticsProvider.withAutoBase(true) if you are using a <base> HTML tag.

angulartics2 - Vendor-agnostic analytics for Angular2 applications.

  •    TypeScript

Pass string literals or regular expressions to exclude routes from automatic pageview tracking.By default, it removes IDs matching this pattern (ie. either all numeric or UUID) : ^\d+$|^[0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{4}-[0-9a-fA-F]{12}$.

ThreatHunter-Playbook - A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns

  •    

A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns by leveraging Sysmon and Windows Events logs. This project will provide specific chains of events exclusively at the host level so that you can take them and develop logic to deploy queries or alerts in your preferred tool or format such as Splunk, ELK, Sigma, GrayLog etc. This repo will follow the structure of the MITRE ATT&CK framework which categorizes post-compromise adversary behavior in tactical groups. In addition, it will provide information about hunting tools/platforms developed by the infosec community for testing and enterprise-wide hunting.Can't wait to see other hunters' pull requests with awesome ideas to detect advanced patterns of behavior. The more chains of events you contribute the better this playbook will be for the community.

angle-grinder - Slice and dice log files on the command line

  •    Rust

Slice and dice log files on the command line. Angle-grinder allows you to parse, aggregate, sum, average, percentile, and sort your data. You can see it, live-updating, in your terminal. Angle grinder is designed for when, for whatever reason, you don't have your data in graphite/honeycomb/kibana/sumologic/splunk/etc. but still want to be able to do sophisticated analytics.

sigma - Generic Signature Format for SIEM Systems

  •    Python

Sigma is a generic and open signature format that allows you to describe relevant log events in a straight forward manner. The rule format is very flexible, easy to write and applicable to any type of log file. The main purpose of this project is to provide a structured form in which researchers or analysts can describe their once developed detection methods and make them shareable with others. Sigma is for log files what Snort is for network traffic and YARA is for files.

watchtower - Python CloudWatch Logging: Log Analytics and Application Intelligence

  •    Python

Watchtower is a log handler for Amazon Web Services CloudWatch Logs. CloudWatch Logs is a log management service built into AWS. It is conceptually similar to services like Splunk and Loggly, but is more lightweight, cheaper, and tightly integrated with the rest of AWS.

ACE - Automated, Collection, and Enrichment Platform

  •    PowerShell

The Automated Collection and Enrichment (ACE) platform is a suite of tools for threat hunters to collect data from many endpoints in a network and automatically enrich the data. The data is collected by running scripts on each computer without installing any software on the target. ACE supports collecting from Windows, macOS, and Linux hosts. ACE is meant to simplify the process of remotely collecting data across an environment by offering credential management, scheduling, centralized script management, and remote file downloading. ACE is designed to complement a SIEM by collecting data and enriching data; final analysis is best suited for SIEM tools such as Splunk, ELK, or the tools the analyst prefers.

AutoAccept Event Sink for MS Exchange

  •    VB

The AutoAccept Sink for Exchange processes resource reservation requests sent to a mailbox. It is server-based and does not require an Outlook client. If you use an Exchange 5.5 event script today and are migrating to Exchange 2000 then this is for you.

ionic-demo - Ionic kitchen sink

  •    Javascript

Ionic kitchen sink

SPF event sink

  •    C++

A SMTP transport event sink for checking SPF-records on the Windows 2000 platform





We have large collection of open source products. Follow the tags from Tag Cloud >>


Open source products are scattered around the web. Please provide information about the open source projects you own / you use. Add Projects.