Alternatives and similar repositories for sigma-rust:

Users that are interested in sigma-rust are comparing it to the libraries listed below

• u-siem / u-siem-core
  Framework definitions that allow to build a custom SIEM.
  ☆26Updated 7 months ago
• WithSecureLabs / tau-engine
  A document tagging library
  ☆30Updated last month
• avast / yarang
  Alternative YARA scanning engine
  ☆70Updated 2 years ago
• forensicmatt / libtsk-rs
  Wrapper for TSK (Sleuth Kit) Bindings
  ☆11Updated 2 years ago
• theflakes / fmd
  Windows file metadata / forensic tool.
  ☆18Updated 7 months ago
• cudeso / misp-scraper
  A web scraper to create MISP events and reports
  ☆14Updated 3 weeks ago
• strozfriedberg / notatin
  A Windows registry file parser written in Rust
  ☆38Updated last year
• kunai-project / sandbox
  Sandbox samples and monitor them with kunai
  ☆21Updated last week
• jshlbrd / threat-hunting-pocket-guide
  pocket guide for core threat hunting concepts
  ☆23Updated 5 years ago
• humpalum / vscode-sigma
  ☆16Updated last month
• NextronSystems / evtx-baseline
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆77Updated last year
• runreveal / sigmalite
  ☆43Updated last month
• openrelik / openrelik-server
  The core backend server handling API requests and task management
  ☆39Updated 2 weeks ago
• Velocidex / evtx-data
  Publicly shareable windows event log message data
  ☆27Updated 5 years ago
• puffyCid / artemis
  A cross platform forensic parser written in Rust!
  ☆81Updated this week
• threatcat-ch / malware-analysis-pipeline
  Lightweight Python-Based Malware Analysis Pipeline
  ☆34Updated this week
• invoke-eric / jupyter
  Jupyter Notebooks for Cyber Threat Intelligence
  ☆35Updated last year
• vertexproject / synapse-quickstart
  Get started using Synapse Open-Source to start a Cortex and perform analysis within your area of expertise.
  ☆42Updated 2 years ago
• JPCERTCC / jpcert-yara
  JPCERT/CC public YARA rules repository
  ☆106Updated 5 months ago
• Velocidex / pyvelociraptor
  PyVelociraptor contains the python bindings for the Velociraptor API.
  ☆17Updated 2 weeks ago
• CAPESandbox / CAHI
  CAPE Auto-Hardened Installer
  ☆23Updated 3 months ago
• MISP / SkillAegis
  SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…
  ☆27Updated 2 weeks ago
• 00010111 / smbtimeline
  ☆34Updated 6 months ago
• fboldewin / YARA_Detection_Engineering
  Detection Engineering with YARA
  ☆87Updated last year
• marirs / sigma-convert
  Convert Sigma Rules to different formats
  ☆11Updated 9 months ago
• binalyze / tigma
  Sigma Engine implementation in TypeScript
  ☆27Updated 2 years ago
• Loginsoft-LLC / threat-detection-rules
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆51Updated 2 years ago
• 0xrawsec / gene
  Signature engine for all your logs
  ☆168Updated last year
• center-for-threat-informed-defense / summiting-the-pyramid
  Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…
  ☆38Updated last month
• Karib0u / CTrag
  A cyber threat intelligence chatbot that ingested 2200+ reports from vx-underground.
  ☆23Updated last year