☆34Oct 16, 2025Updated 7 months ago
Alternatives and similar repositories for sigma-rules-crawler
Users that are interested in sigma-rules-crawler are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- NetEye 4 community repository to share monitoring templates, Plugin scripts and instructions to enhance some NetEye modules in an guided …☆18Dec 17, 2025Updated 5 months ago
- A complete system to deploy functional Honeypots to all infrastructures that needs to be notified when something anomalous occur☆10Feb 8, 2022Updated 4 years ago
- Safed for Linux☆14Jul 5, 2019Updated 6 years ago
- Can you pay the ransom in your country?☆14Dec 18, 2023Updated 2 years ago
- Knowing which rule should trigger according to the redcannary test☆11Nov 23, 2024Updated last year
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Rules Shared by the Community from 100 Days of YARA 2023 -☆18Apr 10, 2023Updated 3 years ago
- Collection of malware ioc hashes from blog posts. A Python script is provided to search through it.☆19Sep 10, 2020Updated 5 years ago
- Transform EQL detection rules to VQL artifacts☆12Nov 12, 2021Updated 4 years ago
- Query.AI plugin for Kibana☆13Nov 10, 2019Updated 6 years ago
- Kestrel Jupyter Notebook Kernel☆10Oct 19, 2023Updated 2 years ago
- Elasticsearch/Kibana environment and log data for Sigma workshop☆27Dec 20, 2019Updated 6 years ago
- ☆13Apr 8, 2022Updated 4 years ago
- curl based tool to send messages using Microsoft Exchange ActiveSync protocol☆11Oct 18, 2019Updated 6 years ago
- Aggregated ATT&CK technique reporting data. Presented at Splunk GovSummit December 2022☆17Jul 18, 2025Updated 10 months ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- "Deep Packet Inspection as a Service" (CoNEXT '14)☆16Mar 30, 2017Updated 9 years ago
- This repository contains a few examples of actions that can be added to rules within Elastic Security.☆24Feb 6, 2025Updated last year
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Apr 10, 2020Updated 6 years ago
- defender_database☆25Oct 31, 2023Updated 2 years ago
- Keklick - C2 Hunting, Reporting and Visualization Tool☆63Jul 23, 2025Updated 10 months ago
- incident response scripts☆18Mar 4, 2019Updated 7 years ago
- Elasticsearch Stack Overflow Vulnerability☆18Sep 23, 2023Updated 2 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆159Mar 10, 2025Updated last year
- ☆11Feb 19, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Maltego transformation for TON investigations☆24Jan 1, 2024Updated 2 years ago
- A script to create and assign SOP tasks into the cases☆20Aug 16, 2020Updated 5 years ago
- 🛝 Transforms any RCE into a functional dumb shell. Designed for constrained environments (e.g., firewalls) where traditional reverse she…☆14May 11, 2026Updated 2 weeks ago
- RDP Checker☆66Feb 23, 2024Updated 2 years ago
- ☆13May 27, 2020Updated 5 years ago
- A repository of my own Sigma detection rules.☆165Nov 25, 2025Updated 5 months ago
- Simple "push to talk" for Pulseaudio on GNU/Linux Desktop in user mode wrote in python (command line only)☆11Apr 8, 2026Updated last month
- Website crawler with YARA detection☆90Aug 20, 2023Updated 2 years ago
- Pulls IOCs from MISP and adds the to reference sets in QRadar☆33May 18, 2026Updated last week
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆40May 18, 2022Updated 4 years ago
- IOCs for various malware families☆11Jul 18, 2024Updated last year
- Objectify-s3 is a tool that recursively checks AWS S3 buckets and objects for misconfigured permissions.☆15Mar 1, 2026Updated 2 months ago
- ☆14Jan 24, 2023Updated 3 years ago
- CLI tool for testing Office documents with macros using MaliciousMacroBot☆12Dec 3, 2023Updated 2 years ago
- Shortcut Downloader☆11Jan 11, 2017Updated 9 years ago
- A Rust library along with a Win32 GUI application to determine the driver load order of a Windows system (cf. https://colinfinck.de/posts…☆13Jan 26, 2025Updated last year