u-siem / u-siem-core
Framework definitions that allow to build a custom SIEM.
☆24Updated 5 months ago
Related projects: ⓘ
- A cross platform forensic parser written in Rust!☆61Updated this week
- Cyber threat intelligence crates for Rust☆13Updated 7 months ago
- Cisco Orbital - Osquery queries by Talos☆122Updated 3 weeks ago
- Rust bindings for VirusTotal/Yara☆74Updated 3 months ago
- A forensic evidence acquirer☆85Updated 3 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆139Updated last year
- Rust implementation of the DCSO Bloom filter☆26Updated last month
- A parser for the MFT (Master File Table) format☆124Updated last year
- ☆101Updated this week
- A CALDERA plugin☆72Updated 3 months ago
- Signature engine for all your logs☆156Updated 10 months ago
- Sigma Detection Rule Repository☆84Updated 4 years ago
- MalwareDB: bookkeeping for malware, goodware, and unknown files with relationship discovery☆28Updated this week
- A Go implementation and parser for Sigma rules.☆82Updated 2 weeks ago
- Import specific data sources into the Sigma generic and open signature format.☆77Updated 2 years ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆94Updated 3 months ago
- ☆19Updated this week
- Safe and performant YARA rules evaluator☆44Updated this week
- ☆34Updated 3 years ago
- Log Entry to Sigma Rule Converter☆105Updated 2 years ago
- Threat Hunting & Incident Investigation with Osquery☆197Updated 2 years ago
- Golang library that implements a sigma log rule parser and match engine.☆89Updated 2 months ago
- Alternative YARA scanning engine☆66Updated 2 years ago
- Blueteam operational triage registry hunting/forensic tool.☆142Updated last year
- Collecting & Hunting for IOCs with gusto and style☆235Updated 3 years ago
- A Rust library for managing eBPF programs.☆114Updated 6 months ago
- Converts Sigma detection rules to a Splunk alert configuration.☆105Updated 4 years ago
- Threat Detection & Anomaly Detection rules for popular open-source components☆49Updated 2 years ago
- SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)☆184Updated 3 years ago
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆93Updated 2 weeks ago