socprime

Azure-Sentinel

Cloud-native SIEM for intelligent security analytics for your entire enterprise.

connectors

OpenCTI connectors

sigma

Generic Signature Format for SIEM Systems

Sigma-Hunting-App

A Splunk App containing Sigma detection rules, which can be updated from a Git repository.

SigmaRulesIntegration

SigmaUI

SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)

soc_workflow_app_ce

SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack, and view Saved Searches configured by teammates.

socprime_sigma

List of sigma for a variety of threats for multiple log sources.

sslframework

the-prime-hunt

A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation

socprime/SigmaUI

SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)

socprime/soc_workflow_app_ce

SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack, and view Saved Searches configured by teammates.

socprime/the-prime-hunt

A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation

socprime/SigmaRulesIntegration

socprime/socprime_sigma

List of sigma for a variety of threats for multiple log sources.

socprime/Sigma-Hunting-App

A Splunk App containing Sigma detection rules, which can be updated from a Git repository.

socprime/sigma

Generic Signature Format for SIEM Systems

socprime/Azure-Sentinel

Cloud-native SIEM for intelligent security analytics for your entire enterprise.

socprime/sslframework

socprime/connectors

OpenCTI connectors

socprime/pySigma-backend-ala

socprime/pySigma-backend-elasticsearch

pySigma Elasticsearch backend

socprime/pySigma-backend-splunk

pySigma Splunk backend