A Rust library for parsing and evaluating Sigma rules
☆21Nov 26, 2025Updated 5 months ago
Alternatives and similar repositories for sigma-rust
Users that are interested in sigma-rust are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆11Dec 9, 2025Updated 4 months ago
- Documentation and tools to curate Sigma rules for Windows event logs into easier to parse rules.☆16Oct 22, 2025Updated 6 months ago
- ☆21Nov 19, 2025Updated 5 months ago
- Basically a KrabsETW rip-off written in Rust☆90Oct 20, 2025Updated 6 months ago
- Windows Event Log "Microsoft-Windows-Partition%4Diagnostic.evtx" parser and devices' VSNs extractor.☆20Nov 28, 2023Updated 2 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- ☆43Nov 28, 2025Updated 5 months ago
- Primarily aimed at replicating files that cannot be directly copied due to being in use.☆11Apr 22, 2024Updated 2 years ago
- Repository for Ludus french templates☆24Mar 1, 2026Updated 2 months ago
- Sigma Engine implementation in TypeScript☆28Mar 5, 2023Updated 3 years ago
- Convert Sigma rules to SIEM queries, directly in your browser.☆114Apr 18, 2026Updated 2 weeks ago
- pySigma Elasticsearch backend☆65Apr 23, 2026Updated last week
- Bring Your Own Mitre Att&ck © Matrix !☆13Oct 19, 2023Updated 2 years ago
- Framework definitions that allow to build a custom SIEM.☆30Sep 23, 2024Updated last year
- A dataset with CloudTrail events from an attack simulation using Stratus.☆25Jul 12, 2023Updated 2 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Knowing which rule should trigger according to the redcannary test☆11Nov 23, 2024Updated last year
- A Sigma based detection pipeline☆12Dec 15, 2023Updated 2 years ago
- 🌦️ Domain Ranker☆16Sep 7, 2019Updated 6 years ago
- Generates a GitHub issue description for go-fuzz findings☆11Dec 3, 2015Updated 10 years ago
- ☆25Feb 13, 2021Updated 5 years ago
- Data from analysis of the custom sample from the chapter "Practical Analysis and Test"☆12Aug 1, 2020Updated 5 years ago
- Wrapper for TSK (Sleuth Kit) Bindings☆12Jan 10, 2023Updated 3 years ago
- Detection Rule License (DRL)☆21Dec 27, 2024Updated last year
- ☆12May 30, 2019Updated 6 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.☆217Updated this week
- Design by contract for Go☆16Mar 13, 2025Updated last year
- Dynamic Identification and Recognition Technology☆10Nov 1, 2016Updated 9 years ago
- Bro script module for detecting malware using domain generation algorithms.☆13Feb 22, 2018Updated 8 years ago
- The home of the SDDLMaker☆29Jan 13, 2025Updated last year
- A simple bash script that does its best to automate and visualize differential benchmarking for Go projects.☆20Apr 23, 2018Updated 8 years ago
- DFIR Timeline Analysis for macOS — SQLite-backed viewer for CSV, TSV, XLSX, EVTX, Plaso, $MFT, and $J files with built-in process inspect…☆237Mar 21, 2026Updated last month
- ☆16Feb 22, 2026Updated 2 months ago
- Nancy - Nim fancy ANSI tables☆56May 5, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A permissions system for Go structs☆15Feb 16, 2018Updated 8 years ago
- Validates Sigma rules using the JSON schema☆22Apr 24, 2026Updated last week
- ☆23Oct 9, 2024Updated last year
- Tailwind UI Component CSS prefixer☆10Jun 22, 2020Updated 5 years ago
- Swift code to programmatically execute local or hosted JXA payloads from Terminal without using the on-disk osascript binary.☆23Apr 22, 2021Updated 5 years ago
- EDR/AV Simulation for Malware Development☆13Oct 21, 2023Updated 2 years ago
- This repository contains sample log data that were collected after running adversary simulations in Microsoft 365☆24Oct 9, 2024Updated last year