quadrantsec / sagan-rulesLinks
☆35Updated 2 weeks ago
Alternatives and similar repositories for sagan-rules
Users that are interested in sagan-rules are comparing it to the libraries listed below
Sorting:
- Threat Detection & Anomaly Detection rules for popular open-source components☆53Updated 3 years ago
- The Sigma command line interface based on pySigma☆166Updated 2 weeks ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆157Updated 8 months ago
- Awesome Splunk SPL hunt queries that can be used to detect the latest vulnerability exploitation attempts & subsequent compromise☆67Updated last year
- Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…☆51Updated 6 months ago
- Dettectinator - The Python library to your DeTT&CT YAML files.☆118Updated 7 months ago
- The principal objective of this project is to develop a knowledge base of the tactics, techniques, and procedures (TTPs) used by insiders…☆147Updated 4 months ago
- OSSEM Detection Model☆180Updated 3 years ago
- An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.☆166Updated last month
- ☆76Updated 2 months ago
- Sigma rules from Joe Security☆226Updated last year
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆53Updated 2 months ago
- Standard-Format Threat Intelligence Feeds☆126Updated this week
- Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…☆81Updated last week
- Rules generated from our investigations.☆203Updated 5 months ago
- An opensource sigma conversion tool built using pysigma☆149Updated last month
- Indicators of Compromise☆234Updated 3 weeks ago
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆94Updated 3 years ago
- Sensor Mappings to ATT&CK is a collection of resources to assist cyber defenders with understanding which sensors and events can help det…☆50Updated 5 months ago
- ☆98Updated 3 years ago
- Mappings Explorer enables cyber defenders to understand how security controls and capabilities map onto the adversary behaviors catalogue…☆83Updated last week
- Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques☆140Updated last year
- MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats☆56Updated this week
- ☆127Updated 2 years ago
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆132Updated last year
- Cisco Orbital - Osquery queries by Talos☆135Updated last year
- Extracts IoCs, TTPs and the relationships between them. Outputs a STIX 2.1 bundle.☆77Updated this week
- Welcome to the SEKOIA.IO Community repository!☆169Updated this week
- SentinelOne STAR Rules☆69Updated 9 months ago
- ☆28Updated last week