admingit
/
Deploiement_Server
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'e0ba6bc584'
${ noResults }
Deploiement_Server/deployment-apps/Splunk_Security_Essentials/lookups/SampleDataList.csv

2.3 KiB
Raw Blame History

1lookuplabel
2Anonymized_Email_Logs.csvEmail Logs
3Example_Legacy_Pass_The_Hash.csvExample Pass The Hash (Legacy)
4Local_Short_Lived_Account.csvLocal Short-Lived Account
5Local_User_Account_Creation.csvLocal User Account Creation
6SFDC_Sample_Data_Anon.csvSFDC Data
7STE_Sysmon_commandline.csvSysmon Data
8STE_Win4688.csvWindows 4688 Data
9Sampled_AnonymizedLogonActivity.csvWindows Logon Activity
10Sysmon_Timestamp_Adjustment_STE.csvSysmon Timestamp Modification
11anon_interactive_logons.csvInteractive Logins
12anonymized_DC_4776_logs.csvDomain Controller Logins (Event ID 4776)
13anonymized_box_logs.csvBox Logs
14anonymized_git_history.csvSource Code Access Logs
15dns_data_anon.csvDNS Logs
16event_id_4648_runas.csvWindows Run As Logs (Event ID 4648)
17generic_sysmon_process_launch_logs.csvGeneric Sysmon Process Launches
18generic_sysmon_service_launch_logs.csvGeneric Sysmon Service Launches
19healthcare_cerner_patient_records.csvAggregated Cerner EMR Logs
20od_splunklive_fw_data.csvSample Firewall Data
21process_launch_logs.csvProcess Launch Logs
22synthetic_sysmon_process_launch_logs.csvSynthetic Sysmon Process Launch Logs
23sysmon_process_launch_logs.csvSysmon Process Launch Logs
24uniflow_printer_log_sample.csvPrinter Logs
25windows_system_event_id_20001_usb_inserts.csvUSB Inserts from Windows System Event ID 20001
26bots-webproxy-data.csvWeb Proxy Logs
27AnonymizedBruteForce.csvWindows Brute Force
28aws-cloudtrail-data-anon.csvAWS CloudTrail
29tstats_online_hosts.csvRaw Event Counts by Host
30anonymized_sep_logs.csvSymantec Endpoint Protection Operations
31anonymized_sep_virus_logs.csvSymantec Endpoint Protection Risks
32anon_wmi_service_logs.csvSystem Update Service Status
33splunk_index_provisioning.csvSplunk Index Provisioning
34UC_aws_public_buckets.csvAWS CloudTrail Public Bucket
35UC_active_directory_search.csvLDAPSearch Output
36UC_SFDC_GDPR_Contact_Accesses.csvSFDC Contact Access by Country
37UC_anonymized_confluence_logs.csvConfluence Logs
38UC_raw_data_for_privilege_calculations.csvLDAP Data for Privilege Analysis
39PrivilegedRiskScores.csvUser Risk Scores
40UC_generic_risk_events.csvRisk Events
41anonymized_windows_security_events_with_tags.csvWindows Events with Tags
42anon_system_logon_with_failure_codes.csvWindows Logons with Failure Codes
43UC_file_copied_to_usb.csvFabricated Files Copied to USB
44UC_dlp_alerts.csvFabricated DLP Alerts