A Rust library for parsing and evaluating Sigma rules
☆21Nov 26, 2025Updated 5 months ago
Alternatives and similar repositories for sigma-rust
Users that are interested in sigma-rust are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Documentation and tools to curate Sigma rules for Windows event logs into easier to parse rules.☆16Oct 22, 2025Updated 7 months ago
- ☆21Nov 19, 2025Updated 6 months ago
- IBM QRadar opinionated API client in Go☆13Mar 15, 2023Updated 3 years ago
- Basically a KrabsETW rip-off written in Rust☆91Oct 20, 2025Updated 7 months ago
- Windows Event Log "Microsoft-Windows-Partition%4Diagnostic.evtx" parser and devices' VSNs extractor.☆20Nov 28, 2023Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- ☆44Nov 28, 2025Updated 5 months ago
- Primarily aimed at replicating files that cannot be directly copied due to being in use.☆11Apr 22, 2024Updated 2 years ago
- Repository for Ludus french templates☆24Mar 1, 2026Updated 2 months ago
- Sigma Engine implementation in TypeScript☆28Mar 5, 2023Updated 3 years ago
- pySigma Elasticsearch backend☆66Updated this week
- Convert Sigma rules to SIEM queries, directly in your browser.☆116Updated this week
- This crate provides functions for working with IPv4 CIDRs and IPv6 CIDRs.☆33Dec 26, 2025Updated 4 months ago
- Framework definitions that allow to build a custom SIEM.☆30Sep 23, 2024Updated last year
- A dataset with CloudTrail events from an attack simulation using Stratus.☆26Jul 12, 2023Updated 2 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Knowing which rule should trigger according to the redcannary test☆11Nov 23, 2024Updated last year
- A Sigma based detection pipeline☆12Dec 15, 2023Updated 2 years ago
- 🌦️ Domain Ranker☆16Sep 7, 2019Updated 6 years ago
- Generates a GitHub issue description for go-fuzz findings☆11Dec 3, 2015Updated 10 years ago
- Experimenting with eager evaluation of Go WASM code☆12Oct 22, 2018Updated 7 years ago
- ☆25Feb 13, 2021Updated 5 years ago
- Data from analysis of the custom sample from the chapter "Practical Analysis and Test"☆12Aug 1, 2020Updated 5 years ago
- Wrapper for TSK (Sleuth Kit) Bindings☆12Jan 10, 2023Updated 3 years ago
- Detection Rule License (DRL)☆21Dec 27, 2024Updated last year
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- golang interactive cli with sub commands☆34Nov 6, 2023Updated 2 years ago
- Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.☆218May 3, 2026Updated 2 weeks ago
- NMAP NSE that enumerates VNC authentication types☆14Dec 21, 2010Updated 15 years ago
- Dynamic Identification and Recognition Technology☆10Nov 1, 2016Updated 9 years ago
- A simple bash script that does its best to automate and visualize differential benchmarking for Go projects.☆20Apr 23, 2018Updated 8 years ago
- ☆23Mar 21, 2026Updated 2 months ago
- Assign ownership to files and directories and ensure that owners review changes☆15Jul 27, 2017Updated 8 years ago
- DFIR Timeline Analysis for macOS — SQLite-backed viewer for CSV, TSV, XLSX, EVTX, Plaso, $MFT, and $J files with built-in process inspect…☆243Apr 30, 2026Updated 3 weeks ago
- ☆16Feb 22, 2026Updated 3 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Nancy - Nim fancy ANSI tables☆56May 5, 2023Updated 3 years ago
- libdt is part of the "Huorong eXtendible Stream Scan Engine" project copyright by Huorong Borui (Beijing) Technology Co., Ltd.☆14Aug 17, 2015Updated 10 years ago
- A permissions system for Go structs☆15Feb 16, 2018Updated 8 years ago
- ☆23Oct 9, 2024Updated last year
- Tailwind UI Component CSS prefixer☆10Jun 22, 2020Updated 5 years ago
- Ghidra Script for automated analysis of EMOTET☆17Feb 3, 2021Updated 5 years ago
- Swift code to programmatically execute local or hosted JXA payloads from Terminal without using the on-disk osascript binary.☆23Apr 22, 2021Updated 5 years ago