WithSecureLabs/lazarus-sigma-rules external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

WithSecureLabs/lazarus-sigma-rules

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/WithSecureLabs/lazarus-sigma-rules)

Close

WithSecureLabs / lazarus-sigma-rulesView on GitHubMore

• External links
• Readme badge

☆19Oct 23, 2020Updated 5 years ago

Alternatives and similar repositories for lazarus-sigma-rules

Users that are interested in lazarus-sigma-rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• blacklanternsecurity / sigma-rules

  View on GitHub
  A collection of Sigma rules organized by MITRE ATT&CK technique
  ☆18Jul 26, 2021Updated 4 years ago
• tsale / TA_tooling

  View on GitHub
  ☆10Dec 24, 2022Updated 3 years ago
• P4T12ICK / Sigma-Rule-Repository

  View on GitHub
  Sigma Detection Rule Repository
  ☆92Jun 18, 2020Updated 5 years ago
• ReconInfoSec / sigma-to-elastalert

  View on GitHub
  Ansible playbook to convert Sigma rules to ElastAlert rules
  ☆10Feb 5, 2021Updated 5 years ago
• joesecurity / sigma-rules

  View on GitHub
  Sigma rules from Joe Security
  ☆233Nov 4, 2024Updated last year
• arieljt / VTCodeSimilarity-YaraGen

  View on GitHub
  ☆98Oct 7, 2020Updated 5 years ago
• StefanKelm / yara-rules

  View on GitHub
  Links to malware-related YARA rules
  ☆15Sep 29, 2022Updated 3 years ago
• Immersive-Labs-Sec / volatility_plugins

  View on GitHub
  Volatility 3 Plugins
  ☆21Oct 3, 2022Updated 3 years ago
• 100DaysofYARA / 2022

  View on GitHub
  ☆23Dec 15, 2022Updated 3 years ago
• 3CORESec / SIEGMA

  View on GitHub
  SIEGMA - Transform Sigma rules into SIEM consumables
  ☆159Mar 10, 2025Updated last year
• Neo23x0 / atomic-threat-coverage

  View on GitHub
  Knowledge base of analytics designed to cover threats based on MITRE's ATT&CK.
  ☆23Dec 13, 2018Updated 7 years ago
• karttoon / iocs

  View on GitHub
  IoC's, PCRE's, YARA's etc
  ☆23Mar 25, 2025Updated 11 months ago
• mohlcyber / OpenDXL-ATD-MAR-Elasticsearch

  View on GitHub
  Automated Real-Time Threat Hunting with ATD, Active Response and Elasticsearch/Kibana
  ☆10Aug 17, 2018Updated 7 years ago
• 0xThiebaut / sigmai

  View on GitHub
  Import specific data sources into the Sigma generic and open signature format.
  ☆79May 6, 2022Updated 3 years ago
• pe3zx / mthc

  View on GitHub
  All-in-one bundle of MISP, TheHive and Cortex
  ☆170Sep 27, 2022Updated 3 years ago
• B2dfir / gcp_log_toolbox

  View on GitHub
  ☆11Oct 3, 2019Updated 6 years ago
• Saeros-Security / Saeros

  View on GitHub
  Open source HIDS tailored for Microsoft Windows and Active Directory
  ☆29Feb 13, 2026Updated last month
• mbrengel / yarix

  View on GitHub
  ☆64Apr 1, 2021Updated 4 years ago
• bolodev / osxripper

  View on GitHub
  Tool to rip system and user data from OSX and macOS
  ☆16Dec 6, 2022Updated 3 years ago
• 3CORESec / Automata

  View on GitHub
  Automatic detection engineering technical state compliance
  ☆55Jul 7, 2024Updated last year
• opencybersecurityalliance / kestrel-analytics

  View on GitHub
  This repository hosts community contributed Kestrel analytics
  ☆18May 28, 2024Updated last year
• trustedsec / RisingSun

  View on GitHub
  RisingSun: Decoding SUNBURST C2 to identify infected hosts without network telemetry.
  ☆10Jan 14, 2021Updated 5 years ago
• frkncelik / Sigma-Rule

  View on GitHub
  You can access the sigma rules to detect malicious activities. It is organized by Mitre Att&ck categories.
  ☆13Feb 7, 2022Updated 4 years ago
• zerber0s / mac_int

  View on GitHub
  macOS Artifact Intelligence Tool
  ☆13Apr 30, 2019Updated 6 years ago
• k3idii / ION

  View on GitHub
  Indicators of Normality
  ☆11Jul 22, 2022Updated 3 years ago
• matthw / malware_analysis

  View on GitHub
  ☆18Mar 26, 2024Updated last year
• neolea / neolea-training-materials

  View on GitHub
  Open source training materials for law-enforcement and organisations interested in DFIR.
  ☆63May 30, 2025Updated 9 months ago
• citrix / ioc-scanner-CVE-2019-19781

  View on GitHub
  Indicator of Compromise Scanner for CVE-2019-19781
  ☆58Mar 25, 2020Updated 5 years ago
• raw-data / malarchive

  View on GitHub
  Malware samples observed in the wild from time to time
  ☆12Jul 29, 2019Updated 6 years ago
• forensicxlab / volatility3_plugins

  View on GitHub
  ☆25Jul 23, 2024Updated last year
• lasq88 / socgholish_finder

  View on GitHub
  ☆14Mar 9, 2023Updated 3 years ago
• cudeso / dfir-iris-misp-timesketch

  View on GitHub
  Scripts to integrate DFIR-IRIS, MISP and TimeSketch
  ☆36Feb 2, 2022Updated 4 years ago
• SecureDataLabs / 44Con-2018-Sysmon

  View on GitHub
  Sys Mon! Why yu nuh logging dat?
  ☆12Dec 10, 2018Updated 7 years ago
• ZigzagSecurity / survival-guide-radare2

  View on GitHub
  Basic tutorials for reverse engineer with radare2
  ☆60Mar 17, 2019Updated 7 years ago
• zarkones / ControlSTUDIO

  View on GitHub
  Adversary Simulation Framework
  ☆38Aug 19, 2025Updated 7 months ago
• Kirtar22 / ThreatHunting_with_Osquery

  View on GitHub
  Threat Hunting & Incident Investigation with Osquery
  ☆216Mar 30, 2022Updated 3 years ago
• opencybersecurityalliance / kestrel-huntbook

  View on GitHub
  This repository hosts community contributed Kestrel huntflows (.hf) and huntbooks (.ipynb)
  ☆37Jan 2, 2024Updated 2 years ago
• ruppde / yara_rules

  View on GitHub
  Yara rules
  ☆22Mar 27, 2023Updated 2 years ago
• SentineLabs / PowerTrick

  View on GitHub
  This is a repository for the public blog with Labs indicators of compromise and code
  ☆18Jan 8, 2020Updated 6 years ago