Pinned Repositories
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
evtx-baseline
A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
MalwareTracesGenerator
Generate malware traces for detection tests
pySigma-yml-pipeline
Unofficial pySigma Yaml pipeline
sigma
Generic Signature Format for SIEM Systems
sigma-rule-ref
The SigmaHQ rule's reference as PDF
sigma_python_toolbox
My tools box script for sigma
sigma_redcanaryco
Knowing which rule should trigger according to the redcannary test
SigmaDiff
know the rules that have changed between 2 Sigma rules folder
pySigma-validators-sigmaHQ
frack113's Repositories
frack113/sigma_redcanaryco
Knowing which rule should trigger according to the redcannary test
frack113/MalwareTracesGenerator
Generate malware traces for detection tests
frack113/sigma
Generic Signature Format for SIEM Systems
frack113/atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
frack113/evtx-baseline
A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
frack113/pySigma
Python library and tools to parse and convert Sigma rules into queries (and whatever else you could imagine)
frack113/pySigma-backend-splunk
pySigma Splunk backend
frack113/sigma-rule-ref
The SigmaHQ rule's reference as PDF
frack113/vscode-sigma
frack113/AtomicTestHarnesses
Public Repo for Atomic Test Harness
frack113/MetaRuleBazar
A simple POC on Sigma Meta Rules
frack113/pySigma-yml-pipeline
Unofficial pySigma Yaml pipeline
frack113/aurora-helpers
Helper scripts and configs to be used with Aurora Agent
frack113/cookiecutter-pySigma-backend
pySigma Cookiecutter backend template
frack113/LOLBAS
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
frack113/pySigma-backend-cortexxdr
frack113/pySigma-backend-datadog
Datadog pySigma backend
frack113/pySigma-backend-elasticsearch
pySigma Elasticsearch backend
frack113/pySigma-backend-insightidr
frack113/pySigma-backend-QRadar-AQL
QRadar AQL backend for converting Sigma rules to QRadar AQL queries
frack113/pySigma-backend-sqlite
pySigma SQlite backend
frack113/pySigma-pipeline-sysmon
SigmaHQ pySigma Sysmon processing pipeline
frack113/pySigma-pipeline-windows
frack113/pySigma-plugin-directory
Directory of pySigma backends
frack113/pySigma-validators-sigmaHQ
frack113/sigma-cli
The Sigma command line interface based on pySigma
frack113/sigma-mitre
Sigma rules MITRE Heat Map
frack113/sigma-specification
Sigma rule specification
frack113/sigmahq.github.io
Official Website Of The Sigma Project
frack113/Zircolite
A standalone SIGMA-based detection tool for EVTX.