sublime-security/sublime-rules external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

sublime-security/sublime-rules

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/sublime-security/sublime-rules)

Close

sublime-security / sublime-rulesView on GitHubMore

• External links
• Readme badge

Sublime rules for email attack detection, prevention, and threat hunting.

☆365Jun 26, 2026Updated this week

Alternatives and similar repositories for sublime-rules

Users that are interested in sublime-rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• sublime-security / sublime-platform

  View on GitHub
  A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…
  ☆262Jun 18, 2026Updated last week
• sublime-security / sublime-cli

  View on GitHub
  A command-line tool and module for the free Sublime Analysis API
  ☆16Jun 18, 2024Updated 2 years ago
• vector-sec / public-sublime-rules

  View on GitHub
  ☆11Jan 22, 2025Updated last year
• delivr-to / detections

  View on GitHub
  A home for detection content developed by the delivr.to team
  ☆75Aug 10, 2025Updated 10 months ago
• sublime-security / static-files

  View on GitHub
  A collection of static files maintained by the Sublime team, primarily used for phishing defense.
  ☆96Updated this week
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• anvilogic-forge / armory

  View on GitHub
  Anvilogic Forge
  ☆119Mar 31, 2026Updated 3 months ago
• brokensound77 / LoFP

  View on GitHub
  Living off the False Positive!
  ☆42Apr 3, 2026Updated 2 months ago
• seanthegeek / yaramail

  View on GitHub
  A Python package and command line utility for scanning emails with YARA rules
  ☆23May 24, 2026Updated last month
• sublime-security / emailrep.io-python

  View on GitHub
  Python3 interface for the EmailRep API
  ☆56Jan 22, 2021Updated 5 years ago
• elastic / protections-artifacts

  View on GitHub
  Elastic Security detection content for Endpoint
  ☆1,444Updated this week
• Digital-Defense-Institute / triage.zip

  View on GitHub
  A preconfigured Velociraptor triage collector
  ☆77Jun 22, 2026Updated last week
• elastic / detection-rules

  View on GitHub
  ☆2,621Updated this week
• Cyb3r-Monk / Threat-Hunting-and-Detection

  View on GitHub
  Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).
  ☆814Jan 14, 2026Updated 5 months ago
• mgreen27 / DetectRaptor

  View on GitHub
  A repository to share publicly available Velociraptor detection content
  ☆204Jun 21, 2026Updated last week
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• mthcht / ThreatHunting-Keywords

  View on GitHub
  Awesome list of keywords and artifacts for Threat Hunting sessions
  ☆660Aug 4, 2025Updated 10 months ago
• mdecrevoisier / EVTX-to-MITRE-Attack

  View on GitHub
  Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.
  ☆633May 21, 2026Updated last month
• mbabinski / Sigma-Rules

  View on GitHub
  A repository of my own Sigma detection rules.
  ☆165Nov 25, 2025Updated 7 months ago
• TheHive-Project / awesome

  View on GitHub
  A curated list of awesome things related to TheHive & Cortex
  ☆184Oct 9, 2021Updated 4 years ago
• jatrost / awesome-detection-rules

  View on GitHub
  This is a collection of threat detection rules / rules engines that I have come across.
  ☆300May 5, 2024Updated 2 years ago
• mthcht / ThreatHunting-Keywords-sigma-rules

  View on GitHub
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆60Mar 2, 2025Updated last year
• vi-or-die / TheHive4PS

  View on GitHub
  Powershell Functions to interact with TheHive-Project
  ☆11Jun 27, 2019Updated 7 years ago
• wagga40 / Zircolite

  View on GitHub
  A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs
  ☆827May 30, 2026Updated last month
• WithSecureLabs / iocs

  View on GitHub
  ☆21May 28, 2026Updated last month
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• chronicle / GCTI

  View on GitHub
  ☆553Dec 4, 2023Updated 2 years ago
• magicsword-io / sigconverter.io

  View on GitHub
  An opensource sigma conversion tool built using pysigma
  ☆170Jun 22, 2026Updated last week
• sublime-security / emailrep.io

  View on GitHub
  emailrep.io Public API
  ☆368Mar 16, 2024Updated 2 years ago
• target / strelka

  View on GitHub
  Real-time, container-based file scanning at enterprise scale
  ☆992Jun 23, 2026Updated last week
• threathunters-io / laurel

  View on GitHub
  Transform Linux Audit logs for SIEM usage
  ☆837Jun 18, 2026Updated last week
• muchdogesec / obstracts

  View on GitHub
  Turn any blog into structured threat intelligence.
  ☆59Jun 19, 2026Updated last week
• panther-labs / panther-analysis

  View on GitHub
  Built-in Panther detection rules and policies
  ☆455Updated this week
• dwillowtree / diana

  View on GitHub
  Save toil in security operations with: Detection & Intelligence Analysis for New Alerts (D.I.A.N.A. )
  ☆224Sep 4, 2024Updated last year
• elastic / dorothy

  View on GitHub
  ☆194Jun 18, 2026Updated last week
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• lolfsaas / lolfsaas.github.io

  View on GitHub
  Living of the Land of Free SaaS
  ☆76Mar 22, 2026Updated 3 months ago
• OTRF / OSSEM

  View on GitHub
  Open Source Security Events Metadata (OSSEM)
  ☆1,298Feb 27, 2023Updated 3 years ago
• sbousseaden / EVTX-ATTACK-SAMPLES

  View on GitHub
  Windows Events Attack Samples
  ☆2,580Jan 24, 2023Updated 3 years ago
• Yamato-Security / hayabusa

  View on GitHub
  Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
  ☆3,227Updated this week
• Bert-JanP / Open-Source-Threat-Intel-Feeds

  View on GitHub
  This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…
  ☆853Updated this week
• LETHAL-FORENSICS / Microsoft-Analyzer-Suite

  View on GitHub
  A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID
  ☆637Jun 20, 2026Updated last week
• ninoseki / mihari

  View on GitHub
  A query aggregator for OSINT based threat hunting
  ☆938Mar 7, 2026Updated 3 months ago