quadrantsec / sagan-rulesLinks
☆34Updated last week
Alternatives and similar repositories for sagan-rules
Users that are interested in sagan-rules are comparing it to the libraries listed below
Sorting:
- The Sigma command line interface based on pySigma☆158Updated 2 weeks ago
- Rules generated from our investigations.☆197Updated 2 months ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆154Updated 5 months ago
- Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise☆66Updated last year
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆128Updated last year
- Threat Detection & Anomaly Detection rules for popular open-source components☆53Updated 3 years ago
- An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.☆156Updated 6 months ago
- Indicators of Compromise☆217Updated last week
- Standard-Format Threat Intelligence Feeds☆122Updated this week
- Zeek-Formatted Threat Intelligence Feeds☆375Updated this week
- Threat Hunting queries for various attacks☆239Updated this week
- Sigma rules from Joe Security☆218Updated 9 months ago
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆53Updated last week
- Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques☆136Updated last year
- An opensource sigma conversion tool built using pysigma☆132Updated this week
- Docker image for MISP☆133Updated 2 weeks ago
- OSSEM Detection Model☆177Updated 2 years ago
- ☆69Updated 6 months ago
- Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…☆47Updated 3 months ago
- Dettectinator - The Python library to your DeTT&CT YAML files.☆116Updated 4 months ago
- Sublime rules for email attack detection, prevention, and threat hunting.☆324Updated this week
- Open source endpoint agent providing host information to Zeek. [v2]☆85Updated last week
- SentinelOne STAR Rules☆67Updated 6 months ago
- A repository of my own Sigma detection rules.☆160Updated 11 months ago
- Sensor Mappings to ATT&CK is a collection of resources to assist cyber defenders with understanding which sensors and events can help det…☆50Updated 2 months ago
- Automated YARA Rule Standardization and Quality Assurance Tool☆238Updated this week
- Convert Sigma rules to Wazuh rules☆67Updated last year
- The principal objective of this project is to develop a knowledge base of the tactics, techniques, and procedures (TTPs) used by insiders…☆143Updated last month
- Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.☆194Updated this week
- Apps to be used for Shuffle automation. Most of Shuffle's apps (2500+) are generated from APIs, and available in the search engine below:☆116Updated last week