Check Sigma rules for easy-to-bypass whitelists to make them more robust (https://github.com/SigmaHQ/sigma)
☆15Feb 1, 2021Updated 5 years ago
Alternatives and similar repositories for SigmaFilterCheck
Users that are interested in SigmaFilterCheck are comparing it to the libraries listed below
Sorting:
- Splunk Add-on for PowerShell provides field extraction for PowerShell event logs.☆17Feb 1, 2021Updated 5 years ago
- MBC v2.x expressed in STIX 2.1 JSON☆16Oct 3, 2023Updated 2 years ago
- Detection rules to look for Log4J usage and exploitation☆18Jun 21, 2025Updated 9 months ago
- PowerGRR is an API client library in PowerShell working on Windows, Linux and macOS for GRR automation and scripting.☆58Mar 18, 2022Updated 4 years ago
- ATT&CK Evaluations website (DEPRECATED)☆62Apr 30, 2021Updated 4 years ago
- Sigma Engine implementation in TypeScript☆28Mar 5, 2023Updated 3 years ago
- A multi-platform .Net wrapper library for the native Yara library.☆39Jun 30, 2023Updated 2 years ago
- Binarly SDK v1☆14Dec 18, 2016Updated 9 years ago
- A Sigma based detection pipeline☆12Dec 15, 2023Updated 2 years ago
- 🌦️ Domain Ranker☆16Sep 7, 2019Updated 6 years ago
- Generates a GitHub issue description for go-fuzz findings☆11Dec 3, 2015Updated 10 years ago
- Experimenting with eager evaluation of Go WASM code☆12Oct 22, 2018Updated 7 years ago
- Suricata rules to detect Winnti communication☆16Mar 5, 2018Updated 8 years ago
- QRadar Export the rule set for printing☆23Oct 23, 2017Updated 8 years ago
- MYSQL plugin that allows RCE through a query☆10Mar 21, 2019Updated 7 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Mar 27, 2017Updated 8 years ago
- PurpleSpray is an adversary simulation tool that executes password spray behavior under different scenarios and conditions with the purpo…☆51Aug 15, 2019Updated 6 years ago
- PE file format reader in JavaScript☆26Apr 10, 2019Updated 6 years ago
- Install and configure user mode auditd tools☆34Feb 17, 2026Updated last month
- Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique☆69Mar 17, 2024Updated 2 years ago
- tinyCA2☆17Aug 29, 2015Updated 10 years ago
- Sigma Detection Rule Repository☆92Jun 18, 2020Updated 5 years ago
- A simple bash script that does its best to automate and visualize differential benchmarking for Go projects.☆20Apr 23, 2018Updated 7 years ago
- ☆21Mar 27, 2025Updated 11 months ago
- ☆13Jul 30, 2021Updated 4 years ago
- Threat Detection & Anomaly Detection rules for popular open-source components☆53Jul 27, 2022Updated 3 years ago
- An Elasticsearch QUEry Language☆57Jul 3, 2017Updated 8 years ago
- Tailwind UI Component CSS prefixer☆10Jun 22, 2020Updated 5 years ago
- Swift code to programmatically execute local or hosted JXA payloads from Terminal without using the on-disk osascript binary.☆23Apr 22, 2021Updated 4 years ago
- a keep-alive agent for node http & https with a really snappy name☆32May 2, 2017Updated 8 years ago
- Silk File Reader☆14Mar 9, 2022Updated 4 years ago
- Golang port of pefile☆25Jul 17, 2017Updated 8 years ago
- Deduplicate named and unnamed imports of the same import path in Go files☆19May 18, 2020Updated 5 years ago
- A Python based Recon Tool to search for Storage Buckets☆11Jan 21, 2023Updated 3 years ago
- Go module that returns supported regions for a service or supported services for a region☆18Dec 12, 2025Updated 3 months ago
- A free tool for learning about a domain's DNS☆22Oct 7, 2025Updated 5 months ago
- ☆10Dec 28, 2015Updated 10 years ago
- ☆16Jan 5, 2017Updated 9 years ago
- Set of scripts to index PCAP files and retrieve packets☆14Sep 10, 2015Updated 10 years ago