sigma-rules
There are 34 repositories under sigma-rules topic.
ion-storm/sysmon-config
Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into Forensic Artifact Events for UEBA, Detect Exploitation events with wide CVE Coverage, and Risk Scoring of CVE, UEBA, Forensic, and MITRE ATT&CK Events.
wagga40/Zircolite
A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs
Elemental-attack/Elemental
Elemental - An ATT&CK Threat Library
nasbench/SIGMA-Resources
Resources To Learn And Understand SIGMA Rules
phish-report/IOK
IOK (Indicator Of Kit) is an open source language and ruleset for detecting phishing threat actor tools and tactics
blackberry/threat-research-and-intelligence
BlackBerry Threat Research & Intelligence
3CORESec/S2AN
S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator
AttackIQ/SigmAIQ
A pySigma wrapper and langchain toolkit for automatic rule creation/translation
mthcht/ThreatHunting-Keywords-sigma-rules
Sigma detection rules for hunting with the threathunting-keywords project
u-siem/u-siem-core
Framework definitions that allow to build a custom SIEM.
sysflow-telemetry/sf-processor
SysFlow edge processing pipeline
marirs/sigma-convert
Convert Sigma Rules to different formats
RussianPanda95/Sigma-Rules
Repository of Sigma Rules
xFFninja/happy_threat_hunting
Threat Hunting
dan21san/sigma-tactics-organizer
Script that organize Sigma rules by MITRE | ATT&CK tactics and techniques.
bradleyjkemp/sigmadoc
A static site generator for @SigmaHQ rules
j91321/sigma-playground
Simple browser playground for Sigma rule format.
muchdogesec/arango_cti_processor
A small script that creates relationships between common CTI knowledge-bases in STIX 2.1 format.
muchdogesec/sigma2stix
A command line tool that converts Sigma Rules into STIX 2.1 Objects.
sansan-monkey/hunting-rules
Threat Hunting Rules - work in progress
subhranshuchoudhury/sigma-rules-api
Sigma rules fun API. A restful API which contains most funny sigma rules. Sigma-rule-api made by subhranhsu sekhar choudhury.
whichbuffer/Threat-Detection-Rules
Threat Detection Repository - YARA / SIGMA rules
arblade/nyx
a new network detection format (sigma like but for network)
scrymastic/windows-log-analyzer
Python tool for analyzing Windows event logs using Sigma rules for threat detection
wikijm/ConvertSigmaRepo2SentinelOnePQ
Scripts played by GitHub Actions that converts Sigma rules to SentinelOne PowerQuery via PySigma.
jacobstickney/sigmarules
This repository contains security detection rules I've created, using the flexible and open Sigma standard, designed to enhance consistency and efficiency in security operations across various log files.
kminh06/signema
Movie Streaming Website
leitosama/SubSigma
Sigma Rules Subscription/Watcher/Notifier
mtnmunuklu/analyze-tags
Analyzes tags of Sigma, Yara and CSIEM rules
PLZENTERTEXT/autopsy-sigmaa-ingest-module
An Autopsy data source ingest module for detection of IOCs in EVTX for Windows and Auditd for Linux based on SIGMA Rules.
aitor-alvarez/OSINT-Search
OSINT script to mine and retrieve Yara and Sigma rules from Github repositories using search API
Mahir-Ali-khan/Sigma-Rules
This Repository is created to publish SIGMA rules
vastlimits/pySigma-backend-uberAgent
uberAgent backend for the Sigma rule converter.
vastlimits/uberAgent-Sigma-Rule-Coverage-Explorer
Web app that allows you to browse and explore the Sigma rules supported by uberAgent ESA's Threat Detection Engine.