calebstewart / python-sigma
Python API for interacting with sigma rules.
☆48Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for python-sigma
- This repo is where I store my Threat Hunting ideas/content☆85Updated last year
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆72Updated 2 years ago
- Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.☆35Updated 11 months ago
- simple webapp for converting sigma rules into siem queries using the pySigma library☆47Updated last year
- Simple PowerShell script to enable process scanning with Yara.☆90Updated 2 years ago
- A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments☆64Updated 2 years ago
- Full of public notes and Utilities☆82Updated 2 months ago
- ☆84Updated 8 months ago
- Active Directory Purple Team Playbook☆104Updated last year
- A home for detection content developed by the delivr.to team☆59Updated 2 months ago
- ☆25Updated 3 years ago
- Baseline a Windows System against LOLBAS☆25Updated 6 months ago
- Placeholder for my detection repo and misc detection engineering content☆43Updated last year
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆68Updated 11 months ago
- ☆43Updated 3 weeks ago
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆57Updated 2 years ago
- Community Tasks/Plans for PlumHound Queueing☆23Updated last year
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆72Updated last week
- ☆41Updated 7 months ago
- Library of threat hunts to get any user started!☆40Updated 4 years ago
- Detection rule validation☆41Updated last year
- Offensive Research Guide to Help Defense Improve Detection☆29Updated last year
- Bloodhound Portable for Windows☆51Updated last year
- Automatic detection engineering technical state compliance☆50Updated 4 months ago
- Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…☆75Updated 3 years ago
- Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop☆56Updated 3 weeks ago
- Random notes collected on the intertubes relating to DFIR☆32Updated last year
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆62Updated 2 years ago
- ☆61Updated 3 years ago