A pySigma wrapper and langchain toolkit for automatic rule creation/translation
☆92Nov 3, 2025Updated 4 months ago
Alternatives and similar repositories for SigmAIQ
Users that are interested in SigmAIQ are comparing it to the libraries listed below
Sorting:
- ☆120May 26, 2025Updated 9 months ago
- ☆44Nov 28, 2025Updated 3 months ago
- An opensource sigma conversion tool built using pysigma☆163Feb 9, 2026Updated last month
- Convert Sigma rules to SIEM queries, directly in your browser.☆113Jan 24, 2026Updated last month
- Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)☆536Updated this week
- pySigma Cookiecutter backend template☆24Sep 17, 2025Updated 6 months ago
- A repository of my own Sigma detection rules.☆163Nov 25, 2025Updated 3 months ago
- Detection Rule License (DRL)☆21Dec 27, 2024Updated last year
- The Sigma command line interface based on pySigma☆181Feb 5, 2026Updated last month
- ☆17Oct 13, 2025Updated 5 months ago
- Indicators of compromise from to analysis and research by Nextron Threat Research team☆12Sep 17, 2025Updated 6 months ago
- ☆56Dec 13, 2025Updated 3 months ago
- An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.☆179Dec 2, 2025Updated 3 months ago
- Threat feeds designed to extract adversarial TTPs and IOCs, using: ✨AI✨☆70Mar 15, 2026Updated last week
- simple webapp for converting sigma rules into siem queries using the pySigma library☆50Sep 1, 2023Updated 2 years ago
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆130Apr 6, 2024Updated last year
- Knowing which rule should trigger according to the redcannary test☆11Nov 23, 2024Updated last year
- pySigma Splunk backend☆41Mar 15, 2026Updated last week
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆87Mar 11, 2026Updated last week
- ☆33Feb 26, 2022Updated 4 years ago
- 🐻❄️ 🏹 Threat hunting with Polars and flaws.cloud AWS CloudTrail datasets.☆14May 22, 2024Updated last year
- This project aims to compare and evaluate the telemetry of various EDR products.☆1,931Jan 20, 2026Updated 2 months ago
- 🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...☆21Mar 22, 2024Updated last year
- Validates Sigma rules using the JSON schema☆22Mar 18, 2024Updated 2 years ago
- A web API for various cyber threat intelligence frameworks, including MITRE ATT&CK, CWE, ATLAS...☆19Mar 14, 2026Updated last week
- The home of the SDDLMaker☆28Jan 13, 2025Updated last year
- A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs☆791Mar 14, 2026Updated last week
- yara detection rules for hunting with the threathunting-keywords project☆157May 11, 2025Updated 10 months ago
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Mar 1, 2023Updated 3 years ago
- Bring Your Own Mitre Att&ck © Matrix !☆13Oct 19, 2023Updated 2 years ago
- ☆12Jul 15, 2022Updated 3 years ago
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆35Oct 21, 2025Updated 5 months ago
- Klara docker compose☆11May 19, 2020Updated 5 years ago
- SACTI - Securely aggregate CTI sightings and report them on MISP☆14Oct 24, 2022Updated 3 years ago
- Synapse Rapid Power-up for SinkDB☆11Jun 24, 2025Updated 8 months ago
- Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.☆215Updated this week
- This repository is used by FalconForce to release parts of the internal tools used for maintaining, validating and automatically deployin…☆18Mar 10, 2023Updated 3 years ago
- Set of SIGMA rules (>350) mapped to MITRE ATT&CK tactic and techniques☆416Nov 8, 2025Updated 4 months ago
- pySigma Elasticsearch backend☆65Updated this week