Stage2Sec / sigmalintLinks
A simple linter for Sigma rules
☆13Updated 5 years ago
Alternatives and similar repositories for sigmalint
Users that are interested in sigmalint are comparing it to the libraries listed below
Sorting:
- This is a repository of vendor-agnostic workflows provided for those interested in deploying Security Orchestration, Automation, and Resp…☆90Updated 4 years ago
- A Splunk app to use MISP in background☆113Updated 3 weeks ago
- stix-icons is a collection of colourful and clean icons for use in software, training and marketing material to visualize cyber threats a…☆37Updated 3 years ago
- A web application for generating, parsing and validating, manipulating, visualizing and executing CACAO v2.0 playbooks.☆39Updated 5 months ago
- Sigma Detection Rule Repository☆92Updated 5 years ago
- ☆99Updated 3 years ago
- Pulls IOCs from MISP and adds the to reference sets in QRadar☆34Updated 2 years ago
- Swagger/ OpenAPI specifications for security products and services☆77Updated last month
- JSON schemas for validating CACAO Security Playbooks. Note: In December 2023, Cyentific AS offered and transferred the content of this re…☆19Updated 2 years ago
- This is a python tool aiming to make using TheHive webhooks easier.☆28Updated 5 years ago
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆114Updated last year
- User guide of MISP☆282Updated last year
- Splunk code (SPL) for serious threat hunters and detection engineers.☆289Updated 2 years ago
- Carbon Black Feeds☆73Updated 2 years ago
- Security Monitoring Resolution Categories☆138Updated 4 years ago
- Tool to extract indicators of compromise from security reports in PDF format☆75Updated last year
- Python API Client for TheHive☆234Updated 2 months ago
- A framework for orchestrating forensic collection, processing and data export☆337Updated last week
- Feed Generator for MISP☆19Updated 3 years ago
- A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.☆252Updated 4 years ago
- Resources for SANS CTI Summit 2020 presentation☆20Updated 6 years ago
- Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy c…☆129Updated 3 years ago
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆53Updated 4 months ago
- This project consists of an open source library allowing software to connect to data repositories using STIX Patterning, and return resul…☆259Updated last week
- The FASTEST way to consume threat intel.☆69Updated 2 years ago
- Import specific data sources into the Sigma generic and open signature format.☆79Updated 3 years ago
- OASIS TC Open Repository: TAXII 2 Client Library Written in Python☆120Updated last year
- This repository hosts files relating to the TF-CSIRT Reference Security Incident Taxonomy Working Group.☆74Updated 9 months ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆158Updated 10 months ago
- OASIS TC Open Repository: The repository cti-stix-slider supports development of a Python application to convert STIX 2.0 content to STIX…☆22Updated last year