A collection of Sigma rules organized by MITRE ATT&CK technique
☆18Apr 1, 2026Updated 2 months ago
Alternatives and similar repositories for sigma-rules
Users that are interested in sigma-rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆20Oct 23, 2020Updated 5 years ago
- Sigma Detection Rule Repository☆93Jun 18, 2020Updated 6 years ago
- A simple Docker container that serves the MITRE ATT&CK Navigator web app☆27Apr 23, 2023Updated 3 years ago
- A collection of pcaps☆16Jul 5, 2015Updated 10 years ago
- Alternative password shadowing scheme☆10May 29, 2026Updated last month
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆11Feb 9, 2023Updated 3 years ago
- PyGotham 2017: Spark Streaming for World Domination (and other projects)☆10Oct 5, 2017Updated 8 years ago
- 🌌 Real-time threat detection for smart contracts☆10May 16, 2023Updated 3 years ago
- SharpReg is a simple code set to interact with the Remote Registry service api and is compatible with Cobalt Strike.☆27Apr 12, 2020Updated 6 years ago
- Event Query Router☆12Aug 9, 2019Updated 6 years ago
- ☆36Nov 26, 2024Updated last year
- This directory contains random scripts from threat hunting or malware research☆11Feb 15, 2018Updated 8 years ago
- ☆33Apr 7, 2020Updated 6 years ago
- Rules generated from our investigations.☆210Jun 17, 2025Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Continuous External Attack Surface Discovery & Vulnerability Scanning Across AWS Organizations — Python CDK☆14Mar 6, 2026Updated 3 months ago
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆51Apr 10, 2024Updated 2 years ago
- Popular Ransomware file extensions☆28Jan 16, 2026Updated 5 months ago
- CLI Search for Security Operators of MITRE ATT&CK URLs☆17Jan 5, 2023Updated 3 years ago
- ETHICAL-HACKING☆13Dec 20, 2023Updated 2 years ago
- Certipy in Docker☆13Mar 28, 2024Updated 2 years ago
- Legacy password hashing framework for PHP applications needing to support or having previously supported PHP below 5.5☆15Nov 22, 2024Updated last year
- Set of SIGMA rules (>350) mapped to MITRE ATT&CK tactic and techniques☆437May 21, 2026Updated last month
- Command line tool for analyzing .json files generated by bloodhound.py or sharphound for use in Bloodhound.☆20Jan 12, 2019Updated 7 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.☆221Updated this week
- Perform file-based malware scan on your on-prem servers with AWS☆14Oct 31, 2023Updated 2 years ago
- A triage data collection script for macOS☆30Nov 27, 2020Updated 5 years ago
- ☆21May 8, 2022Updated 4 years ago
- Java DNS Post Exploitation Tool☆11Jul 21, 2024Updated last year
- A simple linter for Sigma rules☆13Oct 22, 2020Updated 5 years ago
- ☆18Jun 16, 2021Updated 5 years ago
- AMSI Bypass for powershell☆30Apr 26, 2022Updated 4 years ago
- Test Suite for John the Ripper☆26Dec 28, 2025Updated 6 months ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Ejemplo mostrado en la charla de Vue+Django en el meetup de Vue.js 12/Sep/2017☆10Sep 13, 2017Updated 8 years ago
- Quick script to build host or investigation timelines using Carbon Black Response☆12Sep 25, 2018Updated 7 years ago
- Script to retrieve the list of AWS Services and their one-line descriptions☆37Dec 25, 2020Updated 5 years ago
- Cloud threat detection visualization from excalidraw☆12Apr 25, 2022Updated 4 years ago
- ONYX: Cisco Automated Assessment and Auditing Tool (CAAAT). An open-source tool that automatically assesses and audits Cisco IOS routers …☆21May 6, 2025Updated last year
- Implementation of bcrypt password hashing scheme☆13Jan 11, 2021Updated 5 years ago
- Federated Office365 user enumeration based on correlated response trend analysis☆49May 3, 2022Updated 4 years ago