Generates a detailed CSV file containing Sigma Rules statistics for each service or category, and each level, offering a holistic view of the windows rules landscape.
☆10Dec 22, 2023Updated 2 years ago
Alternatives and similar repositories for WinSigmaRuleAnalyzer
Users that are interested in WinSigmaRuleAnalyzer are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A Sigma based detection pipeline☆12Dec 15, 2023Updated 2 years ago
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Feb 6, 2025Updated last year
- A test case runner for Sigma rules☆14Aug 14, 2024Updated last year
- This project aims to bridge the gap between Microsoft Attack Surface Reduction (ASR) rules and MITRE ATT&CK by mapping ASR rules to their…☆29Nov 20, 2024Updated last year
- Windows / Linux Local Privilege Escalation Workshop☆11Jan 15, 2019Updated 7 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- ☆12Apr 22, 2022Updated 4 years ago
- Build K3s image using Packer☆13May 8, 2026Updated last week
- This project contains a **test executable** specifically designed to trigger incidents in **Microsoft Defender for Endpoint (MDE)**. It…☆14Jul 20, 2025Updated 9 months ago
- Simple script to generate commands to achieve reverse shells.☆12Aug 12, 2019Updated 6 years ago
- MISP to Microsoft Defender integration☆17Feb 24, 2026Updated 2 months ago
- Placeholder for my detection repo and misc detection engineering content☆42Oct 20, 2023Updated 2 years ago
- ☆39May 9, 2026Updated last week
- ReverShellGenerator - A tool to generate various ways to do a reverse shell☆13Mar 2, 2019Updated 7 years ago
- Powershell Based tool for gathering information related to O365 intrusions and potential Breaches☆18Dec 29, 2024Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A collection of Cortex Analyzers and Responders for TheHive/Cortex☆13Jan 29, 2020Updated 6 years ago
- Zero-setup YouTube transcript extraction for Claude. Works on mobile, desktop, and web - no local installation required.☆21Jun 8, 2025Updated 11 months ago
- A script designed to test passwords against user accounts within an Active Directory environment, offering customizable Account Lockout T…☆17Jan 28, 2026Updated 3 months ago
- A repository of my own Sigma detection rules.☆165Nov 25, 2025Updated 5 months ago
- An automated deployment tool that creates instrumented Azure environments with vulnerable systems for simulating attacks and testing Micr…☆65Mar 30, 2026Updated last month
- A server to connect local Obisdian instances and remote vaults with Desktop AI tools like Claude and ChatGPT Desktop☆23Oct 16, 2025Updated 7 months ago
- ICS/OT related Wireshark profiles + adding some other (IT or OT related) Open Source Wireshark Profiles☆18Mar 21, 2025Updated last year
- This includes all the templates of nuclei collected from different sources☆18Dec 30, 2022Updated 3 years ago
- CARET - A tool for viewing cyber analytic relationships☆57Jan 15, 2020Updated 6 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- A curated list of FOSS software appliances for building a SOC☆18Jan 11, 2021Updated 5 years ago
- Sensor Mappings to ATT&CK is a collection of resources to assist cyber defenders with understanding which sensors and events can help det…☆54Jun 21, 2025Updated 10 months ago
- Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…☆61Mar 2, 2026Updated 2 months ago
- ☆15Jan 27, 2022Updated 4 years ago
- Security Operation Center Lab☆21Oct 8, 2024Updated last year
- Smartcielo (MRCOOL) plug-in for [Homebridge](https://github.com/nfarina/homebridge) using the smartcielo API.☆14Jul 23, 2023Updated 2 years ago
- Pure python parser for Snort/Suricata rules.☆34Mar 13, 2024Updated 2 years ago
- a Pixie Plus integration for Home Assistant☆11May 3, 2026Updated 2 weeks ago
- Scripted Local Linux Enumeration & Privilege Escalation Checks☆19Mar 26, 2019Updated 7 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- The cActiveDirectorySecurity module contains PowerShell Functions which are designed to report on and manipulate Access Control Lists on …☆11Aug 31, 2018Updated 7 years ago
- Firefly-III - Home Assistant Community Add-ons☆23Mar 18, 2021Updated 5 years ago
- Command line tool used for generating events corpus dynamically given a specific integration☆25Apr 13, 2026Updated last month
- Mapping of open-source detection rules and atomic tests.☆211Feb 16, 2026Updated 3 months ago
- Cheat sheets for threat hunting, detection and other stuff.☆34Oct 7, 2022Updated 3 years ago
- Fluentd plugin to collect windows event logs☆32May 2, 2026Updated 2 weeks ago
- MAES: M365 Analyzer & Extractor Suite Po☆36May 4, 2026Updated 2 weeks ago