Alternatives and similar repositories for Sigma-Rule

Users that are interested in Sigma-Rule are comparing it to the libraries listed below

• OTRF / detection-hackathon-apt29
  Place for resources used during the Mordor Detection hackathon event featuring APT29 ATT&CK evals datasets
  ☆140Updated 5 years ago
• joesecurity / sigma-rules
  Sigma rules from Joe Security
  ☆224Updated 11 months ago
• Insikt-Group / Research
  Research indicators and detection rules
  ☆66Updated 2 years ago
• 0xAnalyst / CB-Threat-Hunting
  ☆116Updated last year
• P4T12ICK / Sigma-Rule-Repository
  Sigma Detection Rule Repository
  ☆90Updated 5 years ago
• 3CORESec / S2AN
  S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator
  ☆89Updated 2 years ago
• pan-unit42 / tweets
  ☆131Updated last year
• Th1ru-M / Windows-Threat-Hunting
  Hunt for Keywords , Mutex, Windows Event,Registry Keys,Process,Schedule tasks in Windows Machine
  ☆22Updated 10 months ago
• advanced-threat-research / IOCs
  Repository containing IOCs, CSV and MISP JSON from our blogs
  ☆81Updated 4 years ago
• christophetd / mindmaps
  Mindmaps for threat hunting - work in progress.
  ☆151Updated 3 years ago
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆105Updated 6 months ago
• P4T12ICK / Sigma-Hunting-App
  A Splunk App containing Sigma detection rules, which can be updated from a Git repository.
  ☆110Updated 5 years ago
• SecurityRiskAdvisors / dredd
  Automated detection rule analysis utility
  ☆29Updated 3 years ago
• socprime / SigmaUI
  SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)
  ☆189Updated 4 years ago
• MHaggis / CBR-Queries
  Collection of useful, up to date, Carbon Black Response Queries
  ☆84Updated 5 years ago
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆97Updated 2 years ago
• OTRF / SimuLand
  Cloud Templates and scripts to deploy mordor environments
  ☆129Updated 4 years ago
• StefanKelm / yara-rules
  Links to malware-related YARA rules
  ☆15Updated 3 years ago
• JPCERTCC / jpcert-yara
  JPCERT/CC public YARA rules repository
  ☆110Updated 10 months ago
• Neo23x0 / evt2sigma
  Log Entry to Sigma Rule Converter
  ☆109Updated 3 years ago
• endgameinc / eqllib
  ☆166Updated 4 years ago
• StrangerealIntel / Orion
  A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...
  ☆140Updated last year
• svch0stz / TheThreatHuntLibrary
  Library of threat hunts to get any user started!
  ☆45Updated 5 years ago
• StrangerealIntel / DailyIOC
  IOC from articles, tweets for archives
  ☆319Updated last year
• OTRF / OSSEM-DM
  OSSEM Detection Model
  ☆180Updated 3 years ago
• TravisFSmith / mitre_attack
  ☆78Updated 5 years ago
• microsoft / MSTIC-Sysmon
  Anything Sysmon related from the MSTIC R&D team
  ☆156Updated last year
• correlatedsecurity / SPEED-SIEM-Use-Case-Framework
  Repository for SPEED SIEM Use Case Framework
  ☆56Updated 5 years ago
• carbonblack / active_c2_ioc_public
  Active C2 IoCs
  ☆99Updated 2 years ago
• fox-it / cobaltstrike-beacon-data
  Open Dataset of Cobalt Strike Beacon metadata (2018-2022)
  ☆127Updated 3 years ago