alterix

SIEM adapter

Converts detection rules and IOCs to be usable with a proprietary SIEM product

Converts Sigma, Yara rules and IOCs

15 stars

1 watching

3 forks

Language: Go

last commit: 5 months ago

Linked from 1 awesome list

cognitive-siemcrypttechcsiemdemodockergogolangiocsigmayara

Backlinks from these awesome lists:

inquest/awesome-yara

Related projects:

Repository	Description	Stars
spyre-project/spyre	A modular host-based IOC scanner built around YARA pattern matching engine	164
securityriskadvisors/talr	A repository for collecting and sharing SIEM rules in STIX format for automated translation to Sigma syntax	90
mdecrevoisier/evtx-to-mitre-attack	Provides Windows log event indicators mapped to MITRE ATT&CK tactic and techniques	532
megvii-research/tlc	Improves image restoration performance by converting global operations to local ones during inference	231
drego85/meioc	Analyzes emails to extract security-relevant information	76
petaki/inertia-go	A Go package providing an Inertia.js server-side adapter	217
eset/malware-ioc	A repository of malware indicators and rules for threat hunting and analysis.	1,698
3coresec/automata	Automated tool to detect errors in security monitoring and measure effectiveness of SIEM rules against various behaviors.	53
ynqa/sig	Interactive command-line search tool with real-time filtering and searching capabilities	611
ditekshen/detection	Detects malicious network and host activity using Yara, Snort, and ClamAV signatures.	213
christhekeele/mnemonix	Provides a unified interface to key/value stores in Elixir and Erlang	39
etingof/pysmi	Tool for parsing and converting SNMP MIBs into various formats	137
xxjwxc/public	A comprehensive utility package for Go programmers	175
arteck/iobroker.zigbee2mqtt	Enables control and integration of Zigbee2Mqtt devices with ioBroker	25
reddrip7/apt_digital_weapon	A collection of indicators of compromise categorized by group, providing information on malware families and their characteristics.	903