frack113

Human log analyzer. Dark side hunter

light side of the forceFrance

Pinned Repositories

atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
Language:C1 0 00
evtx-baseline
A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
1 0 00
MetaRuleBazar
A simple POC on Sigma Meta Rules
0 2 00
pySigma-yml-pipeline
Unofficial pySigma Yaml pipeline
0 1 00
sigma
Generic Signature Format for SIEM Systems
Language:Python2 0 00
sigma_python_toolbox
My tools box script for sigma
Language:Python3 2 01
sigma_redcanaryco
Knowing which rule should trigger according to the redcannary test
Language:Python10 4 22
SigmaDiff
know the rules that have changed between 2 Sigma rules folder
Language:Python2 1 00
WAG
Generate malware artifacts for detection tests
Language:Rust3 3 01
pySigma-validators-sigmaHQ
Language:Python1 4 33

frack113's Repositories

frack113/sigma_redcanaryco
Knowing which rule should trigger according to the redcannary test
Language:Python10 4 22
frack113/WAG
Generate malware artifacts for detection tests
Language:Rust3 3 01
frack113/sigma
Generic Signature Format for SIEM Systems
Language:Python2 0 00
frack113/atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
Language:C1 0 00
frack113/pySigma
Python library and tools to parse and convert Sigma rules into queries (and whatever else you could imagine)
Language:Python1 0 00
frack113/pySigma-backend-splunk
pySigma Splunk backend
Language:Python1 0 00
frack113/RustMyDetection
Mimic a malware in Rust
Language:Roff10
frack113/AtomicTestHarnesses
Public Repo for Atomic Test Harness
Language:PowerShell0 0 00
frack113/MetaRuleBazar
A simple POC on Sigma Meta Rules
0 2 00
frack113/pySigma-yml-pipeline
Unofficial pySigma Yaml pipeline
0 1 00
frack113/aurora-helpers
Helper scripts and configs to be used with Aurora Agent
0 0
frack113/frack113
Config files for my GitHub profile.
1 0
frack113/LOLBAS
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
Language:XSLT0 0
frack113/pySigma-backend-cortexxdr
Language:Python
frack113/pySigma-backend-datadog
Datadog pySigma backend
Language:Python0 0
frack113/pySigma-backend-elasticsearch
pySigma Elasticsearch backend
Language:Python
frack113/pySigma-backend-insightidr
Language:Python
frack113/pySigma-backend-opensearch
pySigma OpenSearch backend
frack113/pySigma-backend-QRadar-AQL
QRadar AQL backend for converting Sigma rules to QRadar AQL queries
frack113/pySigma-backend-sqlite
pySigma SQlite backend
Language:Python
frack113/pySigma-pipeline-sysmon
SigmaHQ pySigma Sysmon processing pipeline
Language:Python0 0
frack113/pySigma-pipeline-windows
Language:Python0 0
frack113/pySigma-plugin-directory
Directory of pySigma backends
Language:Python0 0
frack113/pySigma-validators-sigmaHQ
Language:Python
frack113/sigma-cli
The Sigma command line interface based on pySigma
Language:Python0 0
frack113/sigma-mitre
Sigma rules MITRE Heat Map
Language:Python1 0
frack113/sigma-specification
Sigma rule specification
0 0
frack113/sigma_logsource_helper
Small questions to help select the right logsource for effective detection
Language:Python1 0
frack113/sigmahq.github.io
Official Website Of The Sigma Project
Language:Vue0 0
frack113/Zircolite
A standalone SIGMA-based detection tool for EVTX.
Language:Python0 0