alterix
SIEM adapter
Converts detection rules and IOCs to be usable with a proprietary SIEM product
Converts Sigma, Yara rules and IOCs
15 stars
1 watching
3 forks
Language: Go
last commit: 2 months ago
Linked from 1 awesome list
cognitive-siemcrypttechcsiemdemodockergogolangiocsigmayara
inquest/awesome-yaraRelated projects:
| Repository | Description | Stars |
|---|---|---|
 spyre-project/spyre | A modular host-based IOC scanner built around YARA pattern matching engine | 164 |
 securityriskadvisors/talr | A repository for collecting and sharing SIEM rules in STIX format for automated translation to Sigma syntax | 89 |
 mdecrevoisier/evtx-to-mitre-attack | Provides Windows log event indicators mapped to MITRE ATT&CK tactic and techniques | 527 |
 megvii-research/tlc | Improves image restoration performance by converting global operations to local ones during inference | 231 |
 drego85/meioc | Extracts IoC data from emails | 73 |
 petaki/inertia-go | A Go package providing an Inertia.js server-side adapter | 211 |
 eset/malware-ioc | A repository of malware indicators and rules for threat hunting and analysis. | 1,647 |
 3coresec/automata | Automated tool to detect errors in security monitoring and measure effectiveness of SIEM rules against various behaviors. | 50 |
 ynqa/sig | Interactive command-line search tool with real-time filtering and searching capabilities | 589 |
 ditekshen/detection | Detects malicious network and host activity using Yara, Snort, and ClamAV signatures. | 207 |
 christhekeele/mnemonix | Provides a unified interface to key/value stores in Elixir and Erlang | 39 |
 etingof/pysmi | Tool for parsing and converting SNMP MIBs into various formats | 135 |
 xxjwxc/public | A comprehensive utility package for Go programmers | 175 |
 arteck/iobroker.zigbee2mqtt | Enables control and integration of Zigbee2Mqtt devices with ioBroker | 24 |
 reddrip7/apt_digital_weapon | A curated collection of indicators of compromise and malware metadata from public sources. | 896 |