Sigma

SIEM platform with SQL-based detections and AI-powered investigations

IDE for detection engineering with cross-platform translation for 65+ SIEM/EDR/XDR

Threat detection marketplace with Sigma rules for SIEM and shift-left detection

Detection ruleset based on Sigma open source community rules

EDR platform with EPP capabilities for endpoint threat detection and response

EDR platform for workstation and server protection with EPP capabilities

A mapping tool that correlates MITRE ATT&CK techniques with atomic tests and detection rules to analyze security detection coverage.

Repository for detection content with various types of rules and payloads.

A curated collection of Sigma & Yara rules and Indicators of Compromise (IOCs) for threat detection and malware identification.

A framework for executing cloud attacker tactics, techniques, and procedures (TTPs) that can generate APIs, Sigma detection rules, and documentation from YAML-based definitions.

Converts Sigma and Yara rules to CRYPTTECH's SIEM query language.