Sigma Logo

Sigma

0
Free
Visit Website

Sigma is a generic and open signature format that allows you to describe relevant security-related information in a structured and machine-readable way. It is designed to be used in SIEM systems and other security tools to detect and respond to threats. Sigma is a collaborative project that aims to make reliable detections accessible to all at no cost. The repository offers more than 3000 detection rules of different types, including generic detection rules, threat hunting rules, and emerging threat rules. Sigma is a powerful tool for security professionals, threat hunters, and analysts to detect and respond to threats in a more efficient and effective way.

FEATURES

ALTERNATIVES

Cyber Intelligence Management Platform with threat tracking, forensic artifacts, and YARA rule storage.

A command-line tool that fetches known URLs from various sources to identify potential security threats and vulnerabilities.

Open Source Threat Intelligence Gathering and Processing Framework

Tool for visualizing correspondences between YARA ruleset and samples

A free threat intelligence feed and banlist feed of known malicious IP addresses for public use only.

Acapulco is a Splunk application that automatically generates meta-events from hpfeeds channels and visualizes them using D3.js.

Cortex is a tool for analyzing observables at scale and automating threat intelligence, digital forensics, and incident response.

Open Source Intelligence solution for threat intelligence data enrichment and quick analysis of suspicious files or malware.