Skip to content
/ ThreatHunting-Keywords-sigma-rules Public

Sigma detection rules for hunting with the threathunting-keywords project

50 stars 6 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

mthcht/ThreatHunting-Keywords-sigma-rules

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

85 Commits
.github
.github
 
 
_utils
_utils
 
 
sigma_rules
sigma_rules
 
 
README.md
README.md
 
 

Repository files navigation

ThreatHunting-Keywords-sigma-rules

Low quality sigma detections rules for hunting with Threat Hunting keywords from ThreatHunting-Keywords

You have the flexibility to regenerate all the rules using your own fields. This can be achieved by adjusting the field variables found in the script located here: https://github.com/mthcht/ThreatHunting-Keywords-sigma-rules/blob/main/_utils/create_sigma_rules.py

Developed as an alternative solution for specific XDR/SIEM systems that exclusively operate with Sigma files, circumventing the limitations of not being able to use lookup tables

About

Sigma detection rules for hunting with the threathunting-keywords project

Topics

dfir threat-hunting siem blueteam detection-rules mitre-attack threat-detection threathunting detection-engineering sigma-rules forensicartifacts

Resources

Readme
Activity

Stars

50 stars

Watchers

3 watching

Forks

6 forks
Report repository

Releases

No releases published

Sponsor this project

Packages

No packages published

Contributors 2

  •  
  •  

Languages