Golang library that implements a sigma log rule parser and match engine.
☆105Jul 17, 2024Updated last year
Alternatives and similar repositories for go-sigma-rule-engine
Users that are interested in go-sigma-rule-engine are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A Go implementation and parser for Sigma rules.☆99May 15, 2025Updated last year
- Import specific data sources into the Sigma generic and open signature format.☆79May 6, 2022Updated 4 years ago
- Go implementation of the Community ID flow hashing standard☆22Apr 17, 2025Updated last year
- A Sigma based detection pipeline☆12Dec 15, 2023Updated 2 years ago
- gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that…☆196May 22, 2026Updated last month
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Firepit - STIX Columnar Storage☆18Jun 5, 2024Updated 2 years ago
- A test case runner for Sigma rules☆14Aug 14, 2024Updated last year
- ☆57Dec 13, 2025Updated 6 months ago
- a-ray-grass is a yara module that provides support for DCSO-format bloom filters in yara. In the context of hashlookup, it allows quickly…☆14Aug 19, 2022Updated 3 years ago
- DFF (Digital Forensics Framework)☆11Jan 6, 2021Updated 5 years ago
- kaitaigo is a compiler and runtime to create Go parsers from Kaitai Struct files☆18Apr 20, 2022Updated 4 years ago
- Sigma Engine implementation in TypeScript☆28Mar 5, 2023Updated 3 years ago
- A pure Go library for working with Structured Threat Information Expression (STIX™) version 2.x data☆27Apr 27, 2025Updated last year
- Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)☆568Updated this week
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- This repository is a part of GSoC Project 2019 which intends to add the macOS support for Cuckoo Sandbox. This repository helps setting u…☆11Aug 26, 2019Updated 6 years ago
- Package ghfs wraps the github v3 rest api with io/fs.☆10Aug 23, 2022Updated 3 years ago
- SysFlow edge processing pipeline☆18Jan 15, 2025Updated last year
- Imphash-like calculation on Golang binaries☆50Jul 2, 2022Updated 3 years ago
- CLI and Go package for fast, offline ASN lookups☆22Feb 27, 2025Updated last year
- stix-icons is a collection of colourful and clean icons for use in software, training and marketing material to visualize cyber threats a…☆38Dec 15, 2022Updated 3 years ago
- A linter for ksy files.☆12Aug 15, 2021Updated 4 years ago
- ⚠️ ARCHIVED**: This repository is no longer actively maintained. All Sigma rules are now managed and available in SIEM Rules☆13Mar 19, 2026Updated 3 months ago
- Generate MAEC XML from Ero Carrera's pefile output☆15Mar 6, 2017Updated 9 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A source-available command-line tool for cybersecurity reporting☆71Jun 16, 2026Updated last week
- JSON schemas for validating CACAO Security Playbooks. Note: In December 2023, Cyentific AS offered and transferred the content of this re…☆19Dec 15, 2023Updated 2 years ago
- API for parsing binary files using a predefined grammar☆15Nov 17, 2016Updated 9 years ago
- Tool to read EVTX files including SYSMON and convert to JSON, MISP Objects and Graph stream☆12Oct 29, 2020Updated 5 years ago
- An NTFS file parser in Go☆76Mar 31, 2026Updated 3 months ago
- eBPF-based EDR for Linux☆18Aug 25, 2024Updated last year
- Threat Detection & Anomaly Detection rules for popular open-source components☆53Jul 27, 2022Updated 3 years ago
- Kaitai Struct YAML (KSY) schema specification☆16Sep 12, 2025Updated 9 months ago
- Provide a shell like interface by utilizing osquery's distributed API☆83Jun 24, 2020Updated 6 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.☆221Updated this week
- Go package to perform common cryptanalysis functions.☆15Sep 23, 2017Updated 8 years ago
- Dockerized Zeek☆12Mar 9, 2024Updated 2 years ago
- Pritunl Access Control System☆10Jun 19, 2026Updated last week
- 🗄 A git io/fs file system.☆17Jun 22, 2026Updated last week
- Python3 script which decrypts files encrypted by flawed Cl0p ELF variant.☆17Feb 6, 2023Updated 3 years ago
- A repository of my own Sigma detection rules.☆165Nov 25, 2025Updated 7 months ago