AttackIQ/pySigma-backend-kusto external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

AttackIQ/pySigma-backend-kusto

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/AttackIQ/pySigma-backend-kusto)

Close

AttackIQ / pySigma-backend-kustoView on GitHubMore

• External links
• Readme badge

☆44Nov 28, 2025Updated 5 months ago

Alternatives and similar repositories for pySigma-backend-kusto

Users that are interested in pySigma-backend-kusto are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• AttackIQ / SigmAIQ

  View on GitHub
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆94Nov 3, 2025Updated 6 months ago
• SigmaHQ / pySigma-backend-elasticsearch

  View on GitHub
  pySigma Elasticsearch backend
  ☆66May 19, 2026Updated last week
• magicsword-io / sigconverter.io

  View on GitHub
  An opensource sigma conversion tool built using pysigma
  ☆165Apr 22, 2026Updated last month
• jopohl / sigma-rust

  View on GitHub
  A Rust library for parsing and evaluating Sigma rules
  ☆22Nov 26, 2025Updated 6 months ago
• SigmaHQ / pySigma

  View on GitHub
  Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)
  ☆556May 10, 2026Updated 2 weeks ago
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• SigmaHQ / cookiecutter-pySigma-backend

  View on GitHub
  pySigma Cookiecutter backend template
  ☆25Sep 17, 2025Updated 8 months ago
• SigmaHQ / Detection-Rule-License

  View on GitHub
  Detection Rule License (DRL)
  ☆21Dec 27, 2024Updated last year
• certeu / droid

  View on GitHub
  A pySigma wrapper to manage detection rules.
  ☆46Apr 14, 2026Updated last month
• steinitzu / humblebee

  View on GitHub
  TV show scraper/renamer thingy
  ☆12May 10, 2013Updated 13 years ago
• northsh / detection.studio

  View on GitHub
  Convert Sigma rules to SIEM queries, directly in your browser.
  ☆116May 17, 2026Updated last week
• Mhackiori / AGIR

  View on GitHub
  Automating Cyber Threat Intelligence Reporting with Natural Language Generation
  ☆15Jan 24, 2024Updated 2 years ago
• SigmaHQ / sigma-cli

  View on GitHub
  The Sigma command line interface based on pySigma
  ☆192May 10, 2026Updated 2 weeks ago
• MISP / PyMISPWarningLists

  View on GitHub
  Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists
  ☆36May 11, 2026Updated 2 weeks ago
• SigmaHQ / pySigma-backend-crowdstrike

  View on GitHub
  SigmaHQ pySigma CrowdStrike processing pipeline
  ☆30Nov 30, 2025Updated 5 months ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• jpalanco / klara-docker-compose

  View on GitHub
  Klara docker compose
  ☆11May 19, 2020Updated 6 years ago
• FalconForceTeam / KQLAnalyzer

  View on GitHub
  REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.
  ☆52May 11, 2026Updated 2 weeks ago
• aaronkaplan / stochasticCTIExtractor

  View on GitHub
  Interface LLMs from within MISP to extract TTPs and threat intel from CTI reports
  ☆18Nov 13, 2023Updated 2 years ago
• cudeso / misp2sentinel

  View on GitHub
  MISP to Sentinel integration
  ☆81May 18, 2026Updated last week
• ail-project / ail-training

  View on GitHub
  AIL project training materials
  ☆39Apr 21, 2026Updated last month
• JouniMi / TheDFIRThing

  View on GitHub
  ☆22Aug 29, 2024Updated last year
• inhashed / thehive-sentinel-integration

  View on GitHub
  Integration tools for TheHive and Azure Sentinel
  ☆13Sep 23, 2020Updated 5 years ago
• Yamato-Security / sigma-to-hayabusa-converter

  View on GitHub
  Documentation and tools to curate Sigma rules for Windows event logs into easier to parse rules.
  ☆16Oct 22, 2025Updated 7 months ago
• flowintel / cocktailparty

  View on GitHub
  CocktailParty is a data broker system based on phoenix framework
  ☆23Apr 23, 2025Updated last year
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• Ragmthy / gralhix_osint_exercises

  View on GitHub
  Repository for write-ups of Sofia Santos' OSINT exercises
  ☆18Sep 29, 2025Updated 7 months ago
• Croko-fr / ludus-templates

  View on GitHub
  Repository for Ludus french templates
  ☆24Mar 1, 2026Updated 2 months ago
• SigmaHQ / pySigma-backend-insightidr

  View on GitHub
  ☆16Aug 29, 2025Updated 8 months ago
• Yamato-Security / Presentations

  View on GitHub
  ☆21Nov 19, 2025Updated 6 months ago
• cyentific-rni / stix2.1-coa-playbook-extension

  View on GitHub
  A STIX 2.1 Extension Definition for the Course of Action (COA) object type. The nested property extension allows a COA to share machine-r…
  ☆24Dec 11, 2023Updated 2 years ago
• CodeByHarri / Sigma2KQL

  View on GitHub
  Sigma Queries turned into KQL for Defender using pysigma
  ☆12Mar 29, 2026Updated last month
• CTI-Driven / Microsoft-ASR-to-MITRE-ATTACK-Mapping-Project

  View on GitHub
  This project aims to bridge the gap between Microsoft Attack Surface Reduction (ASR) rules and MITRE ATT&CK by mapping ASR rules to their…
  ☆29Nov 20, 2024Updated last year
• dobin / waasa

  View on GitHub
  Windows Application Attack Surface Analyzer
  ☆25Feb 22, 2024Updated 2 years ago
• simon-r-watson / SophosCentral

  View on GitHub
  Sophos Central PowerShell module
  ☆12Jul 11, 2023Updated 2 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• frack113 / sigma_redcanaryco

  View on GitHub
  Knowing which rule should trigger according to the redcannary test
  ☆11Nov 23, 2024Updated last year
• kennybradley / HomeSecurity

  View on GitHub
  This is a tutorial for a data-secure home surveillance system with notifications to mobile devices.
  ☆13Mar 14, 2022Updated 4 years ago
• rod-trent / Sentinel-SOC-101

  View on GitHub
  Content and collateral for the Microsoft Sentinel SOC 101 series
  ☆215Feb 12, 2024Updated 2 years ago
• solo10010 / reconWTF

  View on GitHub
  This tool is intended for bounty hunters, the script installs and launches the best set of tools for expanding the attack surface, for W…
  ☆12Apr 22, 2024Updated 2 years ago
• joswr1ght / s3logparse

  View on GitHub
  Simple parser to get useful information from AWS S3 logs
  ☆29Sep 5, 2021Updated 4 years ago
• michaelb / simple-user-simulation

  View on GitHub
  powershell script to simulate activity by a user
  ☆21Jul 29, 2020Updated 5 years ago
• AttackIQ / DetectIQ

  View on GitHub
  ☆121May 26, 2025Updated last year