4 tools and resources
Repository for detection content with various types of rules and payloads.
A curated collection of Sigma & Yara rules and Indicators of Compromise (IOCs) for threat detection and malware identification.
A framework for executing attacker actions in the cloud with YAML-based format for defining TTPs and detection properties, deployable via AWS-native CI/CD pipeline.
Converts Sigma and Yara rules to CRYPTTECH's SIEM query language.