Sigma
0
Free
Sigma is a generic and open signature format that allows you to describe relevant security-related information in a structured and machine-readable way. It is designed to be used in SIEM systems and other security tools to detect and respond to threats. Sigma is a collaborative project that aims to make reliable detections accessible to all at no cost. The repository offers more than 3000 detection rules of different types, including generic detection rules, threat hunting rules, and emerging threat rules. Sigma is a powerful tool for security professionals, threat hunters, and analysts to detect and respond to threats in a more efficient and effective way.
FEATURES
The author has not provided features for this tool yet. If you are the author, please sign in or claim the tool to add features by clicking the icon above.
ALTERNATIVES
Python APIs for serializing and de-serializing STIX2 JSON content with higher-level APIs for common tasks.
A community-driven project sharing detection logic, adversary tradecraft, and resources to make detection development more efficient, following MITRE ATT&CK structure.
A modular malware collection and processing framework with support for various threat intelligence feeds.
A comprehensive and unrestricted dataset of security incidents for research and decision-making
A curated collection of Sigma & Yara rules and Indicators of Compromise (IOCs) for threat detection and malware identification.
A tool designed to extract additional value from enterprise-wide AppCompat / AmCache data
A repository of Yara signatures under the GNU-GPLv2 license for the cybersecurity community.
A serverless application for creating and monitoring URL tokens with threat intelligence and customizable alerts.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Commercial
Resources
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Free
Security Operations
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Free
Blogs and News
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Commercial
Security Operations
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Commercial
Application Security
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Commercial
IAM
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Commercial
Cloud Security
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.
Commercial
AI Security