pySigma Splunk backend
☆42Mar 22, 2026Updated last month
Alternatives and similar repositories for pySigma-backend-splunk
Users that are interested in pySigma-backend-splunk are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- pySigma Elasticsearch backend☆65Apr 23, 2026Updated last week
- Validates Sigma rules using the JSON schema☆22Apr 24, 2026Updated last week
- The Sigma command line interface based on pySigma☆192Apr 18, 2026Updated 2 weeks ago
- An opensource sigma conversion tool built using pysigma☆164Apr 22, 2026Updated last week
- ☆13Feb 6, 2018Updated 8 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- ☆15Sep 24, 2024Updated last year
- Indicators of compromise from to analysis and research by Nextron Threat Research team☆12Sep 17, 2025Updated 7 months ago
- Bring Your Own Mitre Att&ck © Matrix !☆13Oct 19, 2023Updated 2 years ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆89Mar 11, 2026Updated last month
- Converts Sigma detection rules to a Splunk alert configuration.☆12Jul 1, 2021Updated 4 years ago
- The home of the SDDLMaker☆29Jan 13, 2025Updated last year
- pySigma Cookiecutter backend template☆24Sep 17, 2025Updated 7 months ago
- Custom Splunk search command to reconstruct a pstree from Sysmon process creation events (EventCode 1)☆24Mar 30, 2026Updated last month
- A list of books suggested by the security community to aid intelligence analysts learn to think☆27Aug 7, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A pySigma wrapper and langchain toolkit for automatic rule creation/translation☆93Nov 3, 2025Updated 6 months ago
- Sigma rule specification☆186Feb 5, 2026Updated 3 months ago
- A simple injector that uses LoadLibraryA☆18Jun 14, 2020Updated 5 years ago
- Python-based cloud node for local use☆11Mar 7, 2018Updated 8 years ago
- MalwareAnalysis☆12Dec 19, 2020Updated 5 years ago
- Ansible Collection for Splunk Enterprise Security ES☆15Apr 27, 2026Updated last week
- A repository of my own Sigma detection rules.☆165Nov 25, 2025Updated 5 months ago
- simple webapp for converting sigma rules into siem queries using the pySigma library☆50Sep 1, 2023Updated 2 years ago
- Scripts used to create ISO installers of ROCK for offline installation.☆10Mar 13, 2023Updated 3 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- GitHub action for validating Microsoft Sentinel detection rules☆14May 22, 2023Updated 2 years ago
- Repository for public site hosting graph permissions☆35Updated this week
- Repository for Ludus french templates☆24Mar 1, 2026Updated 2 months ago
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆82Updated this week
- Resources To Learn And Understand SIGMA Rules☆185Feb 14, 2023Updated 3 years ago
- Yara rules written by me, for free use.☆20Nov 26, 2021Updated 4 years ago
- Sigma rules to share with the community☆125Jan 29, 2025Updated last year
- Validates yara rules and tries to repair the broken ones.☆41Sep 5, 2020Updated 5 years ago
- ☆17Oct 13, 2025Updated 6 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- This repository is used by FalconForce to release parts of the internal tools used for maintaining, validating and automatically deployin…☆17Mar 10, 2023Updated 3 years ago
- ☆14Mar 9, 2023Updated 3 years ago
- Creating a Feed of MISP Events from ThreatFox (by abuse.ch)☆19Jun 2, 2021Updated 4 years ago
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆54Mar 21, 2026Updated last month
- A repository that maps API calls to Sysmon Event ID's.☆121Nov 14, 2022Updated 3 years ago
- This is a simple Python script that connects to a MISP instance and retrieves attributes of specific types (such as IP addresses, URLs, a…☆16Feb 6, 2023Updated 3 years ago
- Rules generated from our investigations.☆208Jun 17, 2025Updated 10 months ago