Validates Sigma rules using the JSON schema
☆22Mar 18, 2024Updated 2 years ago
Alternatives and similar repositories for sigma-rules-validator
Users that are interested in sigma-rules-validator are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- The home of the SDDLMaker☆29Jan 13, 2025Updated last year
- pySigma Splunk backend☆41Mar 22, 2026Updated 3 weeks ago
- ☆15Sep 24, 2024Updated last year
- ☆17Oct 13, 2025Updated 6 months ago
- Official Website Of The Sigma Project☆23Feb 16, 2026Updated last month
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Golang based web service to scan files with yara rules☆25Jul 6, 2017Updated 8 years ago
- A simple linter for Sigma rules☆13Oct 22, 2020Updated 5 years ago
- Repository for Ludus french templates☆23Mar 1, 2026Updated last month
- Bring Your Own Mitre Att&ck © Matrix !☆13Oct 19, 2023Updated 2 years ago
- Tools used by CSIRT and especially in the scope of CNW☆18Feb 26, 2026Updated last month
- Convert Sigma rules to SIEM queries, directly in your browser.☆114Apr 3, 2026Updated last week
- Splunk Add-on for PowerShell provides field extraction for PowerShell event logs.☆17Feb 1, 2021Updated 5 years ago
- The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…☆33Mar 9, 2022Updated 4 years ago
- This repository provide a json file for all Windows security Event IDs with lot of useful informations (Categories, GPO, Volume, Recomman…☆11Mar 2, 2023Updated 3 years ago
- NordVPN Threat Protection Pro™ • AdTake your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
- A pySigma wrapper and langchain toolkit for automatic rule creation/translation☆92Nov 3, 2025Updated 5 months ago
- Knowing which rule should trigger according to the redcannary test☆11Nov 23, 2024Updated last year
- A framework and taxonomy for identifying, classifying, and reasoning about detection logic bugs in SIEM, EDR, and XDR rules, with concret…☆48Mar 5, 2026Updated last month
- Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)☆539Updated this week
- Tool that gathers a customizable set of ETW telemetry and generates user-defined detections☆47Jan 28, 2026Updated 2 months ago
- Scans the filesystem for directories that are user-writeable☆13Jun 21, 2021Updated 4 years ago
- Detection Rule License (DRL)☆21Dec 27, 2024Updated last year
- Indicators of compromise from to analysis and research by Nextron Threat Research team☆12Sep 17, 2025Updated 6 months ago
- pySigma Elasticsearch backend☆65Mar 30, 2026Updated last week
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- A simple Jupyter Notebook to graph a users commit history over time, specifically looking at the author of the xz backdoor.☆23Mar 30, 2024Updated 2 years ago
- A Rust library for parsing and evaluating Sigma rules☆21Nov 26, 2025Updated 4 months ago
- Cyber Threat Intelligence☆79Dec 7, 2025Updated 4 months ago
- SQL, IIS, Oh My...☆22Feb 24, 2025Updated last year
- ☆16Feb 22, 2026Updated last month
- A running list of Windows sources and the related event ids.☆19Aug 2, 2023Updated 2 years ago
- ☆74Apr 3, 2025Updated last year
- MalwareAnalysis☆12Dec 19, 2020Updated 5 years ago
- intelligence-icons is a collection of icons and diagrams for building training and marketing materials around Intelligence sharing; inclu…☆41Mar 17, 2019Updated 7 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆88Mar 11, 2026Updated last month
- Repository containing malware analysis filters for the Windows SysInternals' - Process Monitor tool☆21Oct 2, 2020Updated 5 years ago
- ☆10Dec 28, 2015Updated 10 years ago
- 🍛 TypeScript Options-object Currying☆13Dec 9, 2019Updated 6 years ago
- A tool that adds reproducible UUIDs to YARA rules☆13Apr 24, 2024Updated last year
- Cobalt Strike notifications via NTFY.☆15Sep 24, 2024Updated last year
- Template☆18Sep 3, 2024Updated last year