A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs

A pySigma wrapper and langchain toolkit for automatic rule creation/translation

Sigma detection rules for hunting with the threathunting-keywords project

[ARCHIVED -- USE TXT2DETECTION] A command line tool that converts Sigma Rules into STIX 2.1 Objects.

Scripts played by GitHub Actions that converts Sigma rules to SentinelOne PowerQuery via PySigma.

Script that organize Sigma rules by MITRE | ATT&CK tactics and techniques.

a new network detection format (sigma like but for network)

🌋 ETNA - Enhanced Threat Network Analysis | Sicilian-inspired automated threat hunting platform with MITRE ATT&CK integration

A Python command-line tool for quickly searching Sigma rules.

Manage your detection use cases portfolio

A minimal language server to help in writing sigma rules

A command-line tool that converts YAML files into human-readable, formatted Word documents using AI-powered analysis.

Menu-based scanner for Hayabusa intended for scanning mounted images and folders with EVTX files.

OSINT script to mine and retrieve Yara and Sigma rules from Github repositories using search API

A fast, batteries-included CLI companion for MITRE ATT&CK® TTPs.

A Python script to collect Sigma rules from various sources (GitHub repositories, single files, raw text URLs), deduplicate them, and store them in a structured SQLite database and as individual YAML files.

Web app that allows you to browse and explore the Sigma rules supported by uberAgent ESA's Threat Detection Engine.

An Autopsy data source ingest module for detection of IOCs in EVTX for Windows and Auditd for Linux based on SIGMA Rules.

uberAgent backend for the Sigma rule converter.

YARA and SIGMA parser API from an Artifacts. Build in Python just for an experiment study