31 results found Sort:

WithSecureLabs
chainsaw WithSecureLabs
265
2.9k
gpl-3.0
53
Rapidly Search and Hunt through Windows Forensic Artefacts
dfir logs rust sigma attack windows blueteam chainsaw security detection forensics countercept threat-hunting
Created 2021-08-13
416 commits to master branch, last one 10 days ago
Yamato-Security
hayabusa Yamato-Security
203
2.3k
agpl-3.0
42
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
dfir logs rust event sigma attack threat yamato hunting windows hayabusa incident response security detection forensics cybersecurity threat-hunting incident-response security-automation
Created 2020-09-18
4,390 commits to main branch, last one 12 hours ago
Yamato-Security
WELA Yamato-Security
82
763
gpl-3.0
18
WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅(ウェラ)
log dfir logs event sigma threat hunting windows analysis incident response timeline forensics
Created 2021-05-13
131 commits to main branch, last one about a year ago
firoorg
firo firoorg
355
719
mit
99
The privacy-focused cryptocurrency
p2p zkp sigma zcoin privacy lelantus zerocoin blockchain merkle-tree cryptography asic-resistant cryptocurrency zero-knowledge zero-knowledge-proofs merkle-tree-proof-of-work
Created 2016-09-09
17,539 commits to master branch, last one 7 days ago
wagga40
Zircolite wagga40
91
681
unknown
25
A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs
evtx sigma auditd sysmon pysigma python3 detection evtxtract forensics sigma-rules forensics-tools
Created 2021-03-02
230 commits to master branch, last one 19 days ago
tenzir
tenzir tenzir
89
645
bsd-3-clause
35
Tenzir is the data pipeline engine for security teams.
soc pcap siem zeek sigma dataops netflow security suricata pipelines secdataops hacktoberfest investigation threathunting incident-response
Created 2010-09-23
22,897 commits to main branch, last one 22 hours ago
Yamato-Security
EnableWindowsLogSettings Yamato-Security
51
557
gpl-3.0
15
Documentation and scripts to properly enable Windows event logs.
dfir logs event sigma sysmon windows auditing hayabusa security forensics monitoring
Created 2022-09-22
49 commits to main branch, last one about a year ago
sdiehl
bulletproofs sdiehl
44
535
bsd-3-clause
30
Bulletproofs are short non-interactive zero-knowledge proofs that require no trusted setup
sigma zksnarks zk-snarks bulletproofs cryptography range-proofs zero-knowledge elliptic-curves pedersen-commitment
Created 2018-07-11
42 commits to master branch, last one about a year ago
V1D1AN
S1EM V1D1AN
80
412
mit
18
This project is a SIEM with SIRP and Threat Intel, all in one.
n8n misp mwdb yara zeek sigma arkime cortex docker kibana malware opencti thehive filebeat logstash suricata zircolite velociraptor elasticsearch
Created 2021-05-11
638 commits to master branch, last one a day ago
mdecrevoisier
SIGMA-detection-rules mdecrevoisier
67
309
cc0-1.0
20
Set of SIGMA rules (>320) mapped to MITRE ATT&CK tactic and techniques
sigma windows powershell mitre-attack threat-hunting
Created 2020-11-27
295 commits to main branch, last one 5 months ago
yaph
programming-languages-influence yaph
59
187
unknown
34
Code to retrieve data for the programming languages influence visualizations from Freebase
graph sigma python network freebase influence visualization computer-science network-analysis data-visualization programming-languages
Created 2012-09-25
19 commits to master branch, last one 2 years ago
socprime
SigmaUI socprime
34
184
unknown
9
SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)
sigma kibana elastic elk-stack elasticsearch kibana-plugin
Created 2018-10-03
22 commits to master branch, last one 4 years ago
nasbench
SIGMA-Resources nasbench
14
168
unknown
9
Resources To Learn And Understand SIGMA Rules
linux rules sigma awesome windows learning detection resources sigma-rules detection-engineering
Created 2021-10-10
13 commits to main branch, last one about a year ago
Yamato-Security
hayabusa-rules Yamato-Security
23
144
other
9
Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.
log dfir event mitre sigma attack windows analysis hayabusa
Created 2021-12-10
1,161 commits to main branch, last one a day ago
3CORESec
SIEGMA 3CORESec
21
141
agpl-3.0
10
SIEGMA - Transform Sigma rules into SIEM consumables
siem sigma security data-driven detection-engineering
Created 2020-09-28
232 commits to master branch, last one about a year ago
UncoderIO
Uncoder_IO UncoderIO
23
131
other
13
An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.
edr xdr siem roota sigma uncoder datalake uncoderio translation threathunting
Created 2023-11-01
762 commits to main branch, last one 2 days ago
3CORESec
S2AN 3CORESec
13
84
agpl-3.0
5
S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator
sigma suricata sigma-rules mitre-attack suricata-rules threat-hunting threat-modeling
Created 2020-05-01
49 commits to master branch, last one 3 years ago
bradleyjkemp
sigma-go bradleyjkemp
18
84
mit
5
A Go implementation and parser for Sigma rules.
sigma detection-engineering
Created 2020-09-10
70 commits to main branch, last one 2 months ago
0xThiebaut
sigmai 0xThiebaut
5
77
eupl-1.2
10
Import specific data sources into the Sigma generic and open signature format.
ids misp siem sigma logging security monitoring signatures
Created 2020-04-27
15 commits to master branch, last one 2 years ago
annh9b
JPEGView-Static annh9b
10
77
gpl-3.0
3
JPEGView-Static - fast and tiny viewer/editor for PC/Web Images (JPEG, BMP, PNG, WEBP, GIF, TIFF) and Camera Raw Formats (DNG, Canon, Nikon, Sony, Fuji, Sigma) in exactly one statically linked executa...
bmp dng jpg png fuji jpeg sony tiff tiny webp canon nikon sigma editor viewer windows camera-raw statically-linked
Created 2021-12-01
63 commits to main branch, last one 3 months ago
AttackIQ
SigmAIQ AttackIQ
10
66
lgpl-2.1
1
A pySigma wrapper and langchain toolkit for automatic rule creation/translation
llm sigma python3 security langchain sigma-rules security-tools detection-engineering
Created 2023-06-13
74 commits to master branch, last one 13 days ago
alx
parasol alx
4
63
mit
4
A network graph exploration tool
react sigma network-graph visualization
Created 2017-03-20
279 commits to master branch, last one 4 years ago
rohaquinlop
automathon rohaquinlop
2
62
mit
1
A Python library for simulating and visualizing finite automata
dfa nfa pypi sigma python python3 automata epsilon-nfa visualization python-library python-automaton
Created 2021-03-01
209 commits to main branch, last one about a month ago
sametsazak
sysmon sametsazak
15
61
gpl-3.0
4
Sysmon and wazuh integration with Sigma sysmon rules [updated]
ossec sigma wazuh sysmon security sysmon-config wazuh-manager security-tools
Created 2018-09-14
13 commits to master branch, last one 3 years ago
lvpp
sigma lvpp
28
58
mit
11
LVPP sigma-profile database + COSMO-SAC parametrizations
cosmo f-sac mopac sigma gamess unifac activity cosmo-rs database cosmo-sac
Created 2017-08-23
505 commits to master branch, last one 21 days ago
Loginsoft-LLC
threat-detection-rules Loginsoft-LLC
11
50
gpl-3.0
3
Threat Detection & Anomaly Detection rules for popular open-source components
siem sigma splunk elasticsearch threat-hunting threat-detection anomaly-detection
Created 2020-08-07
31 commits to master branch, last one 2 years ago
3CORESec
Automata 3CORESec
11
50
agpl-3.0
5
Automatic detection engineering technical state compliance
sigma caldera detection detection-engineering
Created 2021-06-21
31 commits to master branch, last one 4 months ago
calebstewart
python-sigma calebstewart
6
48
unknown
9
Python API for interacting with sigma rules.
cyber sigma blueteam security detection
Created 2022-02-04
77 commits to main branch, last one 2 years ago
M3NIX
sigmaio M3NIX
3
47
unlicense
2
simple webapp for converting sigma rules into siem queries using the pySigma library
sigma splunk pysigma detection-engineering
This repository has been archived (exclude archived)
Created 2022-05-02
37 commits to main branch, last one about a year ago
grafana
pySigma-backend-loki grafana
1
36
other
9
pySigma backend for generating Grafana Loki/LogQL rules
loki siem sigma
Created 2022-10-14
319 commits to main branch, last one 24 days ago