sigma · GitHub Topics

WithSecureLabs / chainsaw

Rapidly Search and Hunt through Windows Forensic Artefacts

翻译 - 快速搜索和搜寻 Windows 事件日志

attack Rust 安全 threat-hunting blueteam chainsaw detection dfir forensics logs sigma Windows countercept

Rust 3.07 k

2 个月前

Yamato-Security / hayabusa

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

dfir threat hunting Windows event logs Rust sigma detection attack forensics incident response 安全 Cybersecurity incident-response security-automation threat-hunting

Rust 2.49 k

10 小时前

Yamato-Security / WELA-deprecated

WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅（ウェラ）

翻译 - WELA（Windows 事件日志分析器）：用于 Windows 事件日志的瑞士军刀！ゑ罗（ウェラ）

dfir log analysis forensics incident response sigma Windows event logs threat hunting timeline

PowerShell 780

2 年前

firoorg / firo

#区块链#The privacy-focused cryptocurrency

翻译 - 注重隐私的加密货币

zcoin 区块链 zero-knowledge 隐私 zerocoin merkle-tree merkle-tree-proof-of-work asic-resistant sigma 零知识证明 Cryptography 加密货币 P2P

C++ 741

2 天前

wagga40 / Zircolite

A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs

翻译 - 用于EVTX的基于SIGMA的独立检测工具。

sigma Python evtx detection sysmon forensics forensics-tools

Python 703

1 个月前

tenzir / tenzir

Tenzir is the data pipeline engine for security teams.

incident-response threathunting siem soc 安全 DataOps investigation pcap netflow suricata zeek pipelines sigma Hacktoberfest

C++ 668

1 天前

Yamato-Security / EnableWindowsLogSettings

Documentation and scripts to properly enable Windows event logs.

auditing dfir event forensics logs 监控安全 sigma sysmon Windows

Batchfile 590

1 年前

sdiehl / bulletproofs

Bulletproofs are short non-interactive zero-knowledge proofs that require no trusted setup

Cryptography zero-knowledge zksnarks sigma elliptic-curves zk-snarks

Haskell 540

2 年前

V1D1AN / S1EM

This project is a SIEM with SIRP and Threat Intel, all in one.

kibana elasticsearch logstash filebeat suricata zeek misp Malware sigma thehive Docker cortex n8n yara

Shell 427

4 个月前

mdecrevoisier / SIGMA-detection-rules

Set of SIGMA rules (>350) mapped to MITRE ATT&CK tactic and techniques

sigma Windows mitre-attack threat-hunting PowerShell

346

2 个月前

yaph / programming-languages-influence

Code to retrieve data for the programming languages influence visualizations from Freebase

Python sigma 编程语言可视化 Network graph 计算机科学数据可视化 network-analysis

Python 187

3 年前

socprime / SigmaUI

SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)

elasticsearch elk-stack elastic sigma kibana

Python 185

4 年前

nasbench / SIGMA-Resources

#学习与技能提升#Resources To Learn And Understand SIGMA Rules

sigma rules detection detection-engineering Hackathon-Kit learning Windows Linux Awesome Lists

173

2 年前

Yamato-Security / hayabusa-rules

Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.

Windows dfir event log analysis sigma mitre attack

Python 164

10 天前

3CORESec / SIEGMA

SIEGMA - Transform Sigma rules into SIEM consumables

sigma detection-engineering siem 安全 data-driven

Python 146

2 年前

UncoderIO / Uncoder_IO

An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.

datalake edr siem sigma threathunting translation xdr

Python 142

22 天前

ThinkingTransistor / Sigma

#学习与技能提升#Rocket powered machine learning. Create, compare, adapt, improve - artificial intelligence at the speed of thought.

机器学习神经网络框架人工智能 artificial-neural-networks machine learning sigma 深度学习 gpu

C# 120

3 年前

SecurityRiskAdvisors / TALR

Threat Alert Logic Repository

siem stix sigma

Shell 92

6 年前

bradleyjkemp / sigma-go

A Go implementation and parser for Sigma rules.

sigma detection-engineering

Go 86

6 个月前

3CORESec / S2AN

S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator

sigma threat-hunting threat-modeling mitre-attack suricata

C# 85

2 年前