bpmcdevitt/splunk_local
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
splunk_local/generators
History
Exact
bpmcdevitt fa8fd73f1a Add security-focused log generators for SOC and SIEM testing 
- Implement 5 new security log generators: Windows events, firewall logs, DNS queries, authentication logs, and cloud service logs
- Add 'security' Docker Compose profile for easy deployment of security generators
- Windows generator creates realistic Security/System/Application events with attack patterns (failed logins, account creation, service events)
- Firewall generator supports pfSense, iptables, and Cisco ASA formats with malicious traffic blocking simulation
- DNS generator includes DGA domains, suspicious lookups, and multiple DNS server formats (BIND, Pi-hole, Windows DNS)
- Authentication generator creates LDAP, RADIUS, and SSH logs with brute force attack patterns
- Cloud generator produces AWS CloudTrail, Azure Activity, and GCP audit logs with security-relevant events
- Update documentation with comprehensive security use cases for SOC training, threat hunting, and compliance testing
- Enhance Docker Compose configuration with new security profile and service definitions

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>
2025-07-19 17:44:47 -05:00
..
auth_logs.py Add security-focused log generators for SOC and SIEM testing 2025-07-19 17:44:47 -05:00
cloud_logs.py Add security-focused log generators for SOC and SIEM testing 2025-07-19 17:44:47 -05:00
dns_logs.py Add security-focused log generators for SOC and SIEM testing 2025-07-19 17:44:47 -05:00
firewall_logs.py Add security-focused log generators for SOC and SIEM testing 2025-07-19 17:44:47 -05:00
hec_sender.py Add comprehensive log generators for realistic test data 2025-07-19 17:29:37 -05:00
json_logs.py Add comprehensive log generators for realistic test data 2025-07-19 17:29:37 -05:00
syslog_generator.py Add comprehensive log generators for realistic test data 2025-07-19 17:29:37 -05:00
web_logs.py Add comprehensive log generators for realistic test data 2025-07-19 17:29:37 -05:00
windows_events.py Add security-focused log generators for SOC and SIEM testing 2025-07-19 17:44:47 -05:00