A small crappy script I wrote that converts the Sigma Windows Process Creation events to KQL via PySigma. Designed for CI/CD
☆10Nov 7, 2023Updated 2 years ago
Alternatives and similar repositories for ConvertSigmaRepo2KQL
Users that are interested in ConvertSigmaRepo2KQL are comparing it to the libraries listed below
Sorting:
- Cyber Threat Intelligence☆78Dec 7, 2025Updated 2 months ago
- Security Content for the PEAK Threat Hunting Framework☆44Feb 15, 2024Updated 2 years ago
- Google Cloud Security Command Center to Azure Sentinel Connector☆19Jul 15, 2023Updated 2 years ago
- A POC to implement Detection-as-Code with Terraform and Sumo Logic.☆31Jul 27, 2023Updated 2 years ago
- Ingest Nessus files into Elasticsearch using PowerShell!☆17Nov 14, 2025Updated 3 months ago
- ☆14Feb 6, 2026Updated 3 weeks ago
- Scripts written in BASH, PowerShell, Python, and other languages.☆10Aug 5, 2023Updated 2 years ago
- sideloading PoC using onedrive.exe & version.dll☆91Oct 30, 2025Updated 4 months ago
- KQL queries for Microsoft Defender Advanced Hunting organized around the TTPs of the MITRE ATT&CK framework.☆18Nov 7, 2024Updated last year
- Sigma Queries turned into KQL for Defender using pysigma☆12Jun 20, 2024Updated last year
- Detection rule validation☆40Oct 25, 2023Updated 2 years ago
- Generates a detailed CSV file containing Sigma Rules statistics for each service or category, and each level, offering a holistic view of…☆10Dec 22, 2023Updated 2 years ago
- Intune goodies☆10Dec 20, 2019Updated 6 years ago
- A basic NodeJS/ExpressJS app that uses 2FA with both Google TOTP and Fido U2F☆10Dec 4, 2020Updated 5 years ago
- ☆14Jan 18, 2020Updated 6 years ago
- ☆11Dec 8, 2023Updated 2 years ago
- CVE-2025-64155: Fortinet FortiSIEM Argument Injection to Remote Code Execution☆30Jan 13, 2026Updated last month
- Developed Scripts for deploying various Labs using Automated-Lab☆11Mar 23, 2019Updated 6 years ago
- Simple PHP Script to return your true external ip (wan)☆11Mar 7, 2015Updated 10 years ago
- The object detection solution accelerator provides a pre-packaged solution to train, deploy and monitor custom object detection models us…☆14Jan 24, 2024Updated 2 years ago
- Placeholder for my detection repo and misc detection engineering content☆42Oct 20, 2023Updated 2 years ago
- Velociraptor Server hosted in Azure App Service☆59Jun 4, 2025Updated 8 months ago
- An API connector for the Office 365 Management API and the Elastic Stack☆20Aug 9, 2018Updated 7 years ago
- Chrome app to control a Samsung TV over LAN/Wi-Fi.☆11Sep 14, 2018Updated 7 years ago
- Boxstarter setup scripts / All you need to setup your PC in one shot☆12Mar 1, 2020Updated 5 years ago
- Fake SMB and SAMR data☆11Oct 27, 2019Updated 6 years ago
- rpi_gui☆11Feb 5, 2016Updated 10 years ago
- R3D SSH Hunter: The Ultimate SSH Key and Bad Guy Tracker☆12Nov 5, 2024Updated last year
- IoC Feed for security analysts etc.☆13Feb 1, 2023Updated 3 years ago
- Scripts to help and speed up reversing activities☆13Jan 12, 2026Updated last month
- The idea is simply to save some quick notes that will make it easier for Splunk users to leverage KQL (Kusto), especially giving projects…☆44Nov 7, 2020Updated 5 years ago
- my MSTICpy practice and custom tools repository☆11Apr 23, 2025Updated 10 months ago
- Baseline a Windows System against LOLBAS☆71Feb 2, 2026Updated 3 weeks ago
- Random Powershell scripts☆13Feb 13, 2024Updated 2 years ago
- Maltego entity pack encompassing the entire STIX 1.2 data model and a targeted subset of the CybOX 2.1 data model☆11Mar 24, 2016Updated 9 years ago
- Dump protected files (SAM,SYSTEM,SECURITY) by parsing the raw NTFS partition☆32Nov 11, 2025Updated 3 months ago
- Markdown generation for Clojure☆14Oct 8, 2024Updated last year
- Scripts for my Pluralsight PowerShell Playbook: Automating Active Directory course☆13Jan 10, 2020Updated 6 years ago
- 🤖 🆒 Domoticz custom icon generator☆14Oct 31, 2025Updated 4 months ago