Description
SigmaHQ is the upstream community for the Sigma detection-rule format and ships a large rule repository plus the sigmac converter that translates Sigma into SIEM-specific queries (Splunk, Elastic, KQL, Sumo).
Inputs
Tool Chain
Tools that can use this tool's outputs as inputs
Sigma HQoutputs
IOC (Indicator of Compromise)
inputs into
MISPFree
OpenCTIFree
YetiFree
MITRE ATT&CKFree
TheHiveFreemium
CortexFreemium
AbuseIPDBFreemium
AlienVault OTXFree
PulsediveFreemium
ThreatFoxFree
Feodo TrackerFree
PhishTankFree
OpenPhishFreemium
Cisco Talos IntelligenceFree
IBM X-Force ExchangeFreemium
CyberChefFree
Google Safe BrowsingFreemium
Malwarebytes LabsFree
OpenIOC EditorFree
CyberbroFreeReviews
0.0 (0 reviews)