Converts Sigma detection rules to a Splunk alert configuration.
☆12Jul 1, 2021Updated 4 years ago
Alternatives and similar repositories for Sigma2SplunkAlert
Users that are interested in Sigma2SplunkAlert are comparing it to the libraries listed below
Sorting:
- Splunk TA for alert action to TheHive-project☆11May 13, 2020Updated 5 years ago
- A tool to modify timestamps in a packet capture to a user selected date☆31Aug 11, 2021Updated 4 years ago
- A Splunk app to use MISP in background☆113Jan 8, 2026Updated last month
- YARA Rule Strings Statistics Calculator and Malware Research Helper☆14Jul 24, 2021Updated 4 years ago
- MISP to Splunk Enterprise Security Theat Intelligence Framework Integration☆14Jul 11, 2023Updated 2 years ago
- A curated list of awesome YARA rules, tools, and people.☆33Oct 26, 2023Updated 2 years ago
- D-Scan project for office document analysis and generating flow diagram of macro in documents. For demo visit☆29Jan 10, 2026Updated last month
- Forensics scripts aimed at automating & enhancing the Forensics Legend Eric Zimmerman's techniques, integrating the statistical detection…☆18Sep 7, 2023Updated 2 years ago
- Splunk Add-on for PowerShell provides field extraction for PowerShell event logs.☆17Feb 1, 2021Updated 5 years ago
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆46Feb 24, 2023Updated 3 years ago
- ☆25Aug 11, 2020Updated 5 years ago
- A small library helping to parse commandline parameters (for C/C++)☆57May 25, 2025Updated 9 months ago
- VirusTotal SIEM Integration and Automation☆18Jan 16, 2017Updated 9 years ago
- pySigma Elasticsearch backend☆64Feb 19, 2026Updated last week
- TrackMe - Data tracking system for Splunk admins☆47Feb 3, 2023Updated 3 years ago
- Converts exported results of CAPA tool from .json format to another formats supporting by different tools.☆22Feb 15, 2022Updated 4 years ago
- A collection of typical false positive indicators☆56Dec 5, 2020Updated 5 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆159Mar 10, 2025Updated 11 months ago
- Yara rules☆22Mar 27, 2023Updated 2 years ago
- The Sigma command line interface based on pySigma☆177Feb 5, 2026Updated 3 weeks ago
- Some YARA rules i will add from time to time☆67Mar 25, 2023Updated 2 years ago
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Jan 18, 2023Updated 3 years ago
- Custom Splunk search command to reconstruct a pstree from Sysmon process creation events (EventCode 1)☆24Mar 3, 2023Updated 2 years ago
- Streaming Unexpected Network Byte Sequences with High Probability of Blue Screening or Otherwise Crashing Attacker Command-and-Control No…☆22Jul 14, 2019Updated 6 years ago
- pocket guide for core threat hunting concepts☆23May 6, 2020Updated 5 years ago
- AWS EKS Cluster Forensics☆23Aug 16, 2021Updated 4 years ago
- A YARA Rule Performance Measurement Tool☆61Feb 26, 2024Updated 2 years ago
- Splunk App for Cribl Stream and Edge Observability☆28Jul 15, 2025Updated 7 months ago
- VSCode extension for the YARA pattern matching language☆63Jan 10, 2024Updated 2 years ago
- ☆27Mar 2, 2022Updated 3 years ago
- Community modules for FAME☆65Dec 16, 2025Updated 2 months ago
- NDC Oslo 2019 slides and demos☆33Nov 26, 2020Updated 5 years ago
- ☆28Nov 25, 2025Updated 3 months ago
- Converts Sigma detection rules to a Splunk alert configuration.☆115May 18, 2020Updated 5 years ago
- Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.☆32Nov 23, 2025Updated 3 months ago
- Azure function to insert MISP data in to Azure Sentinel☆34Oct 19, 2022Updated 3 years ago
- Anything Sysmon related from the MSTIC R&D team☆156Jun 8, 2024Updated last year
- A highly available AWS deployment of the Threat Intelligence platform, OpenCTI using Terraform. Native AWS resources are used where feasi…☆38Apr 23, 2023Updated 2 years ago
- Community content for LogRhythm Axon. Includes Dashboards, searches, analytics rules, processing policies and more.☆10Jul 26, 2024Updated last year