Converts Sigma detection rules to a Splunk alert configuration.
☆12Jul 1, 2021Updated 4 years ago
Alternatives and similar repositories for Sigma2SplunkAlert
Users that are interested in Sigma2SplunkAlert are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- YARA Rule Strings Statistics Calculator and Malware Research Helper☆14Jul 24, 2021Updated 4 years ago
- Splunk Add-on for PowerShell provides field extraction for PowerShell event logs.☆17Feb 1, 2021Updated 5 years ago
- MISP to Splunk Enterprise Security Theat Intelligence Framework Integration☆14Jul 11, 2023Updated 2 years ago
- A Splunk app to use MISP in background☆112Mar 27, 2026Updated 2 months ago
- Converts exported results of CAPA tool from .json format to another formats supporting by different tools.☆22Feb 15, 2022Updated 4 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Yara rules☆21Mar 27, 2023Updated 3 years ago
- Splunk TA for alert action to TheHive-project☆11May 13, 2020Updated 6 years ago
- A tool to modify timestamps in a packet capture to a user selected date☆31Aug 11, 2021Updated 4 years ago
- Custom Splunk search command to reconstruct a pstree from Sysmon process creation events (EventCode 1)☆24Mar 30, 2026Updated 2 months ago
- Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.☆32Nov 23, 2025Updated 6 months ago
- A collection of typical false positive indicators☆56Dec 5, 2020Updated 5 years ago
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆46Feb 24, 2023Updated 3 years ago
- A demontration of disassemblers generated by sleigh2rust☆13Nov 25, 2024Updated last year
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Jan 18, 2023Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆34Aug 8, 2023Updated 2 years ago
- TrackMe - Data tracking system for Splunk admins☆46Feb 3, 2023Updated 3 years ago
- Streaming Unexpected Network Byte Sequences with High Probability of Blue Screening or Otherwise Crashing Attacker Command-and-Control No…☆22Jul 14, 2019Updated 6 years ago
- Some YARA rules i will add from time to time☆69Mar 25, 2023Updated 3 years ago
- D-Scan project for office document analysis and generating flow diagram of macro in documents. For demo visit☆29Jan 10, 2026Updated 4 months ago
- AWS EKS Cluster Forensics☆23Aug 16, 2021Updated 4 years ago
- Make your swine run like it's Divine☆10Mar 14, 2025Updated last year
- VSCode extension for the YARA pattern matching language☆62Jan 10, 2024Updated 2 years ago
- Anything Sysmon related from the MSTIC R&D team☆156Jun 8, 2024Updated 2 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Splunk App for Cribl Stream and Edge Observability☆28Jul 15, 2025Updated 10 months ago
- A curated list of awesome YARA rules, tools, and people.☆33Oct 26, 2023Updated 2 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆160Mar 10, 2025Updated last year
- pySigma Elasticsearch backend☆67Jun 2, 2026Updated last week
- VirusTotal SIEM Integration and Automation☆18Jan 16, 2017Updated 9 years ago
- intuitive declarative dotfile management☆15Sep 21, 2025Updated 8 months ago
- ☆30Nov 25, 2025Updated 6 months ago
- The Sigma command line interface based on pySigma☆192May 10, 2026Updated 3 weeks ago
- A Prometheus-format exporter to report on DockerHub per-image rate limits☆11May 28, 2026Updated last week
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Community modules for FAME☆65May 21, 2026Updated 2 weeks ago
- A quick bash script that I created in order to speed up the creation of usable kali boxes.☆13Oct 29, 2021Updated 4 years ago
- A spotify application with rofi as frontend☆10Mar 10, 2020Updated 6 years ago
- A small library helping to parse commandline parameters (for C/C++)☆59Apr 7, 2026Updated 2 months ago
- A comprehensive knowledge base for security professionals to keep track of and build defenses against API attack techniques.☆45Sep 12, 2024Updated last year
- This is a python script that can be run on each Splunk Indexer for the purpose of exporting historical bucket data (raw events + metadata…☆12Jan 31, 2024Updated 2 years ago
- Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…☆90Sep 16, 2023Updated 2 years ago