Sigma

Query.AI Federated Detections

Runs security detections across distributed data sources without SIEM ingestion.

Joe Security Joe Sandbox

Deep malware & phishing analysis via static, dynamic, and hybrid methods.

Joe Sandbox Cloud

Cloud-based automated malware analysis for Windows, macOS & Linux.

Joe Security Joe Lab

Cloud-based bare-metal malware analysis lab for SOC, CERT & CIRT teams.

RunReveal Detections

SIEM platform with SQL-based detections and AI-powered investigations

SOC Prime Uncoder AI

IDE for detection engineering with cross-platform translation for 65+ SIEM/EDR/XDR

SOC Prime Threat Detection Marketplace

Threat detection marketplace with Sigma rules for SIEM and shift-left detection

LimaCharlie Sigma Ruleset

Detection ruleset based on Sigma open source community rules

HarfangLab Cybersecurity Solutions

EDR platform with EPP capabilities for endpoint threat detection and response

HarfangLab EDR

EDR platform for workstation and server protection with EPP capabilities

AttackRuleMap

A mapping tool that correlates MITRE ATT&CK techniques with atomic tests and detection rules to analyze security detection coverage.

Detection Content Repository

Repository for detection content with various types of rules and payloads.

Rapid7 Labs Repository

A curated collection of Sigma & Yara rules and Indicators of Compromise (IOCs) for threat detection and malware identification.

Leonidas

A framework for executing cloud attacker tactics, techniques, and procedures (TTPs) that can generate APIs, Sigma detection rules, and documentation from YAML-based definitions.

Alterix

Converts Sigma and Yara rules to CRYPTTECH's SIEM query language.