Sigma Logo

Sigma

0
Free
Visit Website

Sigma is a generic and open signature format that allows you to describe relevant security-related information in a structured and machine-readable way. It is designed to be used in SIEM systems and other security tools to detect and respond to threats. Sigma is a collaborative project that aims to make reliable detections accessible to all at no cost. The repository offers more than 3000 detection rules of different types, including generic detection rules, threat hunting rules, and emerging threat rules. Sigma is a powerful tool for security professionals, threat hunters, and analysts to detect and respond to threats in a more efficient and effective way.

FEATURES

ALTERNATIVES

A tool for quick and effective Yara rule creation to isolate malware families and malicious objects.

Platform providing community-driven threat intelligence on cyber threats with a focus on malware and botnets.

eCrimeLabs provides a SOAR platform for threat detection and response, integrated with MISP.

An extendable tool to extract and aggregate IOCs from threat feeds, integrates with ThreatKB and MISP.

A tool to extract indicators of compromise from security reports in PDF format.

An open source threat intelligence platform for storing and managing cyber threat intelligence knowledge.

DNSDumpster is a domain research tool for discovering and analyzing DNS records to map an organization's attack surface.

Real-time, container-based file scanning system for threat hunting and incident response.