sigma · GitHub Topics

WithSecureLabs / chainsaw

Rapidly Search and Hunt through Windows Forensic Artefacts

attack Rust 安全 threat-hunting blueteam chainsaw detection dfir forensics logs sigma Windows countercept

Rust 3.18 k

2 个月前

Yamato-Security / hayabusa

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

dfir threat hunting Windows event logs Rust sigma detection attack forensics incident response 安全 Cybersecurity incident-response security-automation threat-hunting

Rust 2.65 k

5 天前

Yamato-Security / WELA-deprecated

WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅（ウェラ）

dfir log analysis forensics incident response sigma Windows event logs threat hunting timeline

PowerShell 783

2 年前

firoorg / firo

#区块链#The privacy-focused cryptocurrency

zcoin 区块链 zero-knowledge 隐私 zerocoin merkle-tree merkle-tree-proof-of-work asic-resistant sigma 零知识证明 Cryptography 加密货币 P2P

C++ 750

7 天前

wagga40 / Zircolite

A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs

sigma Python evtx detection sysmon forensics forensics-tools

Python 720

2 个月前

tenzir / tenzir

Tenzir is the data pipeline engine for security teams.

incident-response threathunting siem soc 安全 DataOps investigation pcap netflow suricata zeek pipelines sigma Hacktoberfest

C++ 681

1 天前

Yamato-Security / EnableWindowsLogSettings

Documentation and scripts to properly enable Windows event logs.

auditing dfir event forensics logs 监控安全 sigma sysmon Windows

Batchfile 616

2 年前

sdiehl / bulletproofs

Bulletproofs are short non-interactive zero-knowledge proofs that require no trusted setup

Cryptography zero-knowledge zksnarks sigma elliptic-curves zk-snarks

Haskell 541

2 年前

V1D1AN / S1EM

This project is a SIEM with SIRP and Threat Intel, all in one.

kibana elasticsearch logstash filebeat suricata zeek misp Malware sigma thehive Docker cortex n8n yara

Shell 444

7 个月前

mdecrevoisier / SIGMA-detection-rules

Set of SIGMA rules (>350) mapped to MITRE ATT&CK tactic and techniques

sigma Windows mitre-attack threat-hunting PowerShell

368

5 个月前

socprime / SigmaUI

SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)

elasticsearch elk-stack elastic sigma kibana

Python 188

4 年前

yaph / programming-languages-influence

Code to retrieve data for the programming languages influence visualizations from Freebase

Python sigma 编程语言可视化 Network graph 计算机科学数据可视化 network-analysis

Python 187

3 年前

Yamato-Security / hayabusa-rules

Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.

Windows dfir event log analysis sigma mitre attack

Python 182

4 天前

nasbench / SIGMA-Resources

#学习与技能提升#Resources To Learn And Understand SIGMA Rules

sigma rules detection detection-engineering Hackathon-Kit learning Windows Linux Awesome Lists

177

2 年前

UncoderIO / Uncoder_IO

An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.

datalake edr siem sigma threathunting translation xdr

Python 154

4 个月前

3CORESec / SIEGMA

SIEGMA - Transform Sigma rules into SIEM consumables

sigma detection-engineering siem 安全 data-driven

Python 151

3 个月前

Yamato-Security / suzaku

Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.

Amazon Web Services Azure detection dfir engineering entra forensics Google 云 hunting id incident log 监控 response 安全 sigma threat

Rust 129

5 天前

ThinkingTransistor / Sigma

#学习与技能提升#Rocket powered machine learning. Create, compare, adapt, improve - artificial intelligence at the speed of thought.

机器学习神经网络框架人工智能 artificial-neural-networks machine learning sigma 深度学习 gpu

C# 120

3 年前

SecurityRiskAdvisors / TALR

Threat Alert Logic Repository

siem stix sigma

Shell 92

6 年前

bradleyjkemp / sigma-go

A Go implementation and parser for Sigma rules.

sigma detection-engineering

Go 89

1 个月前