Generic Signature Format for SIEM Systems
☆18Jul 25, 2023Updated 2 years ago
Alternatives and similar repositories for sigma-public
Users that are interested in sigma-public are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- QRadar Export the rule set for printing☆23Oct 23, 2017Updated 8 years ago
- Proof-of-Concept exploits for CVE-2017-11882☆41Jan 2, 2018Updated 8 years ago
- Epimitheus is a tool that uses graphical database Neo4j for Windows Events visualization.☆19Mar 13, 2022Updated 4 years ago
- Resilient Virtual Machine Monitor is a complete fault tolerance solution for type-I hypervisors adopting one of the most popular VMM arch…☆11Jul 30, 2020Updated 5 years ago
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆40May 18, 2022Updated 3 years ago
- VirusTotal SIEM Integration and Automation☆18Jan 16, 2017Updated 9 years ago
- Monitor device events using QRadar☆22Sep 17, 2025Updated 6 months ago
- Event metadata collected across all manifest-based ETW providers on Window 10 1903☆32Nov 25, 2019Updated 6 years ago
- Prepare, Hunt, and Respond - Conceptual model against cyber attacks by JYVSECTEC☆62Jan 10, 2022Updated 4 years ago
- Remotely collect linux live forensics artifacts.☆14Jul 8, 2022Updated 3 years ago
- This repository will teach you got to present my talk "Security is everybody's job", a talk about DevSecOps.☆27Sep 20, 2022Updated 3 years ago
- A list of Mitre Caldera compatible emulation-plans☆14Feb 1, 2021Updated 5 years ago
- 一个常用编码加解密的懒人工具,自动识别,尝试转换所有类型,包括html实体化,base64,base32,32位md5,16位md5,hash,\x,0x等十六进制格式,url编码...☆15Feb 1, 2022Updated 4 years ago
- ☆11Jun 2, 2016Updated 9 years ago
- TelerikUI Vulnerability Scanner (CVE-2019-18935)☆12May 10, 2023Updated 2 years ago
- QRadar Sample Apps for use with V2 of the QRadar App Framework☆23Sep 17, 2025Updated 6 months ago
- ☆23Oct 9, 2024Updated last year
- ☆20Nov 6, 2023Updated 2 years ago
- IBM QRadar Ansible Collection☆25Mar 16, 2026Updated last week
- Sigma rules converted for direct use with Zircolite☆14Mar 16, 2026Updated last week
- An extension of the sigma standard to include security metrics.☆16May 18, 2023Updated 2 years ago
- Log Entry to Sigma Rule Converter☆107Mar 3, 2022Updated 4 years ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆37Mar 15, 2023Updated 3 years ago
- MCP Server for Contrast Security☆16Updated this week
- ☆11Aug 15, 2024Updated last year
- A command line tool for comparing JSON files by degree of similarity.☆12Oct 28, 2019Updated 6 years ago
- A bunch of lua dissectors for Wireshark that support iNet-X and IENA packet formats☆17Jan 28, 2026Updated last month
- Windows process injection methods☆19Aug 11, 2019Updated 6 years ago
- Sysmon shenanigans☆66Oct 9, 2020Updated 5 years ago
- ☆49Jan 13, 2020Updated 6 years ago
- ☆21Oct 16, 2021Updated 4 years ago
- Triaging Windows event logs based on SANS Poster☆48Nov 22, 2025Updated 4 months ago
- OXA - Open XDR architecture☆13Apr 1, 2025Updated 11 months ago
- Repository of all the sites related to infosec IP/Domain/Hash/SSL/etc OSINT and eventually will include more.☆70Oct 30, 2025Updated 4 months ago
- An ELK environment containing interesting security datasets.☆136May 11, 2020Updated 5 years ago
- This is for my crappy (but hopefully useful) MDE and Sentinel KQL queries! #KQLThePlanet☆13Jan 24, 2026Updated 2 months ago
- Windows Thingies... but in Rust☆23Nov 12, 2022Updated 3 years ago
- Resources for DFIR. And more.☆11Jul 3, 2024Updated last year
- Open SAMMY codebase☆24Mar 10, 2026Updated 2 weeks ago