marirs / sigma-convertLinks
Convert Sigma Rules to different formats
☆11Updated 9 months ago
Alternatives and similar repositories for sigma-convert
Users that are interested in sigma-convert are comparing it to the libraries listed below
Sorting:
- Firepit - STIX Columnar Storage☆16Updated last year
- An elevated STIX representation of the MITRE ATT&CK Groups knowledge base☆23Updated 3 years ago
- CyCAT.org API back-end server including crawlers☆29Updated 2 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆27Updated 7 years ago
- CyCAT.org taxonomies☆15Updated 4 years ago
- Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists☆33Updated 4 months ago
- Zeek support for Community ID flow hashing.☆35Updated last year
- Automatic detection engineering technical state compliance☆55Updated 10 months ago
- defendA Data Lake. A firehose pipeline to athena providing enrichment and normalization for security events☆16Updated 2 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- Threat Detection Rules (Snort/Sigma/Yara)☆13Updated last year
- This repository includes a mapping table and a reference process that allows converting between STIX 2.1 Course of Action objects that ma…☆16Updated 2 years ago
- Specifications used in the MISP project including MISP core format☆51Updated 4 months ago
- ☆12Updated 3 years ago
- Collect autorun records from running system☆60Updated 3 years ago
- A Spicy protocol analyzer for WireGuard☆29Updated 4 years ago
- Get started using Synapse Open-Source to start a Cortex and perform analysis within your area of expertise.☆42Updated 3 years ago
- Elasticsearch/Kibana environment and log data for Sigma workshop☆26Updated 5 years ago
- Check IOC provided by a MISP instance on Suricata events☆17Updated 6 years ago
- A collection of my public YARA signatures for various malware families☆29Updated 8 months ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Updated 4 years ago
- ☆35Updated 4 years ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆102Updated 2 weeks ago
- Serverless, real-time, ClamAV+Yara scanning for your S3 Buckets☆31Updated last year
- ☆24Updated 2 years ago
- THOR Thunderstorm Collectors☆24Updated 2 months ago
- Threat Mapping Catalogue☆17Updated 3 years ago
- A document tagging library☆30Updated 2 months ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 3 years ago
- pollen - A command-line tool for interacting with TheHive☆35Updated 5 years ago