☆17Oct 13, 2025Updated 4 months ago
Alternatives and similar repositories for vscode-sigma
Users that are interested in vscode-sigma are comparing it to the libraries listed below
Sorting:
- Tools for inspecting YARA bytecode☆21Jul 1, 2020Updated 5 years ago
- Indicators of compromise from to analysis and research by Nextron Threat Research team☆12Sep 17, 2025Updated 5 months ago
- A pySigma wrapper and langchain toolkit for automatic rule creation/translation☆92Nov 3, 2025Updated 4 months ago
- SQL, IIS, Oh My...☆22Feb 24, 2025Updated last year
- Recipes for GCHQ's CyberChef Web App☆39Nov 15, 2018Updated 7 years ago
- ☆33Feb 26, 2022Updated 4 years ago
- Knowing which rule should trigger according to the redcannary test☆11Nov 23, 2024Updated last year
- MalwareAnalysis☆12Dec 19, 2020Updated 5 years ago
- Repository containing malware analysis filters for the Windows SysInternals' - Process Monitor tool☆20Oct 2, 2020Updated 5 years ago
- Public tools, scripts or code snippets that can help when working with our products☆46Feb 11, 2026Updated 3 weeks ago
- Validates Sigma rules using the JSON schema☆22Mar 18, 2024Updated last year
- Mass Triage Tools☆20Dec 16, 2025Updated 2 months ago
- R-CSIRT Linux Triage tool☆39Jun 28, 2018Updated 7 years ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆86Dec 17, 2025Updated 2 months ago
- ☆27May 6, 2024Updated last year
- This aims to be a collection of tools to forensically analyze Active Directory databases☆25Jun 11, 2025Updated 8 months ago
- pySigma Elasticsearch backend☆64Feb 19, 2026Updated 2 weeks ago
- Blueteam operational triage registry hunting/forensic tool.☆149Sep 2, 2025Updated 6 months ago
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Aug 6, 2022Updated 3 years ago
- Legal, procedural and policies document templates for operating MISP and information sharing communities☆38Jan 31, 2023Updated 3 years ago
- Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.☆32Nov 23, 2025Updated 3 months ago
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆82Jun 9, 2025Updated 8 months ago
- A tool to support the reporting of Authenticode Certificates by reducing the effort on individuals to report.☆40Feb 19, 2026Updated 2 weeks ago
- ☆34Aug 8, 2023Updated 2 years ago
- PowerShellMethodAuditor listens to the PowerShell ETW provider and logs PowerShell method invocations.☆37Sep 19, 2017Updated 8 years ago
- An opensource sigma conversion tool built using pysigma☆161Feb 9, 2026Updated 3 weeks ago
- A library for fast parse & import of Windows Eventlogs into Elasticsearch.☆86Jun 23, 2025Updated 8 months ago
- pySigma Splunk backend☆41Feb 27, 2026Updated last week
- Volatility, on Docker 🐳☆41Nov 20, 2025Updated 3 months ago
- Cisco IOS XE implant scanning & detection (CVE-2023-20198, CVE-2023-20273)☆41Nov 7, 2023Updated 2 years ago
- The Sigma command line interface based on pySigma☆178Feb 5, 2026Updated last month
- CIRCL system forensic tools or a jumble of tools to support forensic☆41Jan 20, 2023Updated 3 years ago
- A guide on how to write fast and memory friendly YARA rules☆166Feb 11, 2025Updated last year
- A collection of personal ZAP scripts☆13Apr 10, 2023Updated 2 years ago
- A CLI tool for migrating from Mattermost to Matrix Synapse with multi-step, resumable migration support.☆19Feb 4, 2026Updated last month
- OSINT=*, Chrome extension that searches all the threat feeds☆11Dec 5, 2021Updated 4 years ago
- ☆11Apr 25, 2021Updated 4 years ago
- Personal notes and lab results pertaining to the text "Practical Malware Analysis" by Michael Sikorski and Andrew Honiq.☆12Oct 28, 2017Updated 8 years ago
- Some YARA rules i will add from time to time☆12May 31, 2019Updated 6 years ago