AttackIQ/pySigma-backend-kusto external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

AttackIQ/pySigma-backend-kusto

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/AttackIQ/pySigma-backend-kusto)

Close

AttackIQ / pySigma-backend-kustoView on GitHubMore

• External links
• Readme badge

☆43Nov 28, 2025Updated 5 months ago

Alternatives and similar repositories for pySigma-backend-kusto

Users that are interested in pySigma-backend-kusto are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• AttackIQ / SigmAIQ

  View on GitHub
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆93Nov 3, 2025Updated 6 months ago
• SigmaHQ / pySigma-backend-elasticsearch

  View on GitHub
  pySigma Elasticsearch backend
  ☆66Apr 23, 2026Updated last week
• magicsword-io / sigconverter.io

  View on GitHub
  An opensource sigma conversion tool built using pysigma
  ☆164Apr 22, 2026Updated 2 weeks ago
• jopohl / sigma-rust

  View on GitHub
  A Rust library for parsing and evaluating Sigma rules
  ☆21Nov 26, 2025Updated 5 months ago
• SigmaHQ / pySigma

  View on GitHub
  Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)
  ☆547Apr 21, 2026Updated 2 weeks ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• SigmaHQ / cookiecutter-pySigma-backend

  View on GitHub
  pySigma Cookiecutter backend template
  ☆24Sep 17, 2025Updated 7 months ago
• SigmaHQ / Detection-Rule-License

  View on GitHub
  Detection Rule License (DRL)
  ☆21Dec 27, 2024Updated last year
• certeu / droid

  View on GitHub
  A pySigma wrapper to manage detection rules.
  ☆46Apr 14, 2026Updated 3 weeks ago
• northsh / detection.studio

  View on GitHub
  Convert Sigma rules to SIEM queries, directly in your browser.
  ☆114Apr 18, 2026Updated 2 weeks ago
• Mhackiori / AGIR

  View on GitHub
  Automating Cyber Threat Intelligence Reporting with Natural Language Generation
  ☆15Jan 24, 2024Updated 2 years ago
• SigmaHQ / sigma-cli

  View on GitHub
  The Sigma command line interface based on pySigma
  ☆192Apr 18, 2026Updated 2 weeks ago
• MISP / PyMISPWarningLists

  View on GitHub
  Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists
  ☆36Jan 8, 2026Updated 3 months ago
• SigmaHQ / pySigma-backend-crowdstrike

  View on GitHub
  SigmaHQ pySigma CrowdStrike processing pipeline
  ☆29Nov 30, 2025Updated 5 months ago
• jpalanco / klara-docker-compose

  View on GitHub
  Klara docker compose
  ☆11May 19, 2020Updated 5 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• FalconForceTeam / KQLAnalyzer

  View on GitHub
  REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.
  ☆51Sep 22, 2025Updated 7 months ago
• aaronkaplan / stochasticCTIExtractor

  View on GitHub
  Interface LLMs from within MISP to extract TTPs and threat intel from CTI reports
  ☆18Nov 13, 2023Updated 2 years ago
• cudeso / misp2sentinel

  View on GitHub
  MISP to Sentinel integration
  ☆80Apr 21, 2026Updated 2 weeks ago
• ail-project / ail-training

  View on GitHub
  AIL project training materials
  ☆39Apr 21, 2026Updated 2 weeks ago
• JouniMi / TheDFIRThing

  View on GitHub
  ☆22Aug 29, 2024Updated last year
• inhashed / thehive-sentinel-integration

  View on GitHub
  Integration tools for TheHive and Azure Sentinel
  ☆13Sep 23, 2020Updated 5 years ago
• Yamato-Security / sigma-to-hayabusa-converter

  View on GitHub
  Documentation and tools to curate Sigma rules for Windows event logs into easier to parse rules.
  ☆16Oct 22, 2025Updated 6 months ago
• flowintel / cocktailparty

  View on GitHub
  CocktailParty is a data broker system based on phoenix framework
  ☆23Apr 23, 2025Updated last year
• jguimera / SecurityCopilotMCPServer

  View on GitHub
  MCP Server that integrates with Security Copilot, Sentinel and other tools (in the future). It enhance the process of developing , testin…
  ☆23Oct 8, 2025Updated 6 months ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• Croko-fr / ludus-templates

  View on GitHub
  Repository for Ludus french templates
  ☆24Mar 1, 2026Updated 2 months ago
• SigmaHQ / pySigma-backend-insightidr

  View on GitHub
  ☆16Aug 29, 2025Updated 8 months ago
• austinsonger / Elastic-Security

  View on GitHub
  Repo for Automations and other solutions for Elastic SIEM/Security.
  ☆18Jun 15, 2021Updated 4 years ago
• Yamato-Security / Presentations

  View on GitHub
  ☆21Nov 19, 2025Updated 5 months ago
• cyentific-rni / stix2.1-coa-playbook-extension

  View on GitHub
  A STIX 2.1 Extension Definition for the Course of Action (COA) object type. The nested property extension allows a COA to share machine-r…
  ☆24Dec 11, 2023Updated 2 years ago
• CodeByHarri / Sigma2KQL

  View on GitHub
  Sigma Queries turned into KQL for Defender using pysigma
  ☆12Mar 29, 2026Updated last month
• CTI-Driven / Microsoft-ASR-to-MITRE-ATTACK-Mapping-Project

  View on GitHub
  This project aims to bridge the gap between Microsoft Attack Surface Reduction (ASR) rules and MITRE ATT&CK by mapping ASR rules to their…
  ☆29Nov 20, 2024Updated last year
• dobin / waasa

  View on GitHub
  Windows Application Attack Surface Analyzer
  ☆24Feb 22, 2024Updated 2 years ago
• simon-r-watson / SophosCentral

  View on GitHub
  Sophos Central PowerShell module
  ☆12Jul 11, 2023Updated 2 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• Karib0u / rustinel

  View on GitHub
  Rustinel is an open-source endpoint detection runtime for Windows and Linux. It collects native telemetry from ETW and eBPF, normalizes e…
  ☆134Apr 25, 2026Updated last week
• frack113 / sigma_redcanaryco

  View on GitHub
  Knowing which rule should trigger according to the redcannary test
  ☆11Nov 23, 2024Updated last year
• kennybradley / HomeSecurity

  View on GitHub
  This is a tutorial for a data-secure home surveillance system with notifications to mobile devices.
  ☆13Mar 14, 2022Updated 4 years ago
• rod-trent / Sentinel-SOC-101

  View on GitHub
  Content and collateral for the Microsoft Sentinel SOC 101 series
  ☆213Feb 12, 2024Updated 2 years ago
• solo10010 / reconWTF

  View on GitHub
  This tool is intended for bounty hunters, the script installs and launches the best set of tools for expanding the attack surface, for W…
  ☆12Apr 22, 2024Updated 2 years ago
• joswr1ght / s3logparse

  View on GitHub
  Simple parser to get useful information from AWS S3 logs
  ☆28Sep 5, 2021Updated 4 years ago
• michaelb / simple-user-simulation

  View on GitHub
  powershell script to simulate activity by a user
  ☆22Jul 29, 2020Updated 5 years ago