내가 좋아할 만한 콘텐츠
⚡️ Sigma is shaping the future of detections. This Atomics on a Friday with @nas_bench explores: SigmaHQ deep dive sigconverter.io in action Expert insights on security content’s evolution 🎥 Full video: youtube.com/watch?v=rYhxQt…
youtube.com
YouTube
Mastering Sigma The Future of Security Content Atomics on a Friday
Because I and the rest of the maintainer team we dont have infinite time. I'm going to be pretty aggressive on PRs submitted to @sigma_hq github.com/SigmaHQ/sigma/ New so called DEs copy pasting random rules and not having the capacity to read the specs will lead to an auto close…
New Sigma release r2025-07-08 is available for download. 🌟43 New Rules 🛡️34 Rule updates 🔬27 Rule Fixes Explore the full release -> github.com/SigmaHQ/sigma/… This release introduces a bunch of new rules including detections for - Katz Stealer - MeshAgent usage -…
New Sigma release r2025-05-21 is available for download. 🌟15 New Rules 🛡️47 Rule updates 🔬13 Rule Fixes Explore the full release -> github.com/SigmaHQ/sigma/… This release focused mainly on updates and tunings of older rules, with newer detections covering NimScan, AdFind,…
Sigma rule packages have been downloaded more than 10M times since we started doing releases in late 2023! Last month package crossed the 2M mark today. 🚀 @sigma_hq
🎉I am finally happy announce a brand new tool – detection.studio Sigma to SIEM conversion – done entirely locally (in-browser). Better support for Pipelines & Filters. Persistent workspaces, and Share & Export to Zip. Check it out down here👇
New Sigma release r2025–02–03 is available for download. 🌟5 New Rules 🛡️5 Rule updates 🔬14 Rule Fixes Explore the full release -> github.com/SigmaHQ/sigma/… This release saw the first wave of contribution from the @TheDFIRReport in a new collab we started with the team. 🔥…
Many people use @sigma_hq rules. That's great. We like to share detection knowledge. Don't be afraid to contribute in 2025. Even a simple False Positive is good. If your boss don't want just ask until having an yes 😝
The more I see private detections the more I realize that the @sigma_hq rule repo is a gold mine and it is actually insane that its free. 😌
Last Sigma release of the year r2024-12-19 is available for download :) 🌟 12 New Rules 🛡️ 52 Rule updates 🔬 6 Rule Fixes This release include multiple updates for Linux rules, new AWS rules and more. Check the full change log and start exploring this, by downloading the…
Now that the last release of the year from @sigma_hq is out. I would like to reflect on the progress we made this year by sharing some stats :) - Merged 325 pull request. 🚀 - Had 103 unique contributors. 🤝 - Added 313 new rules. 📝 - Updated and fixed the rules a combined…
This is a really interesting web page published in the @Virustotal UI that lists the applied @sigma_hq rules on samples executed in their sandboxes and on how many of those samples the particular Sigma rule matched but not a single AV engine virustotal.com/ui/sigma_rules
New Sigma release r2024-11-10 is available for download 🌟 17 New Rules 🛡️ 35 Rule updates 🔬 4 Rule Fixes This release includes rules covering - Suspicious .RDP file creation by Outlook and other uncommon processes. - IIS config tampering. - PowerShell Web Access abuse. -…
If like me you need the @sigma_hq rules references as PDF for AIR GAP, I started a best effort projet : github.com/frack113/sigma…
A massive thanks to @bsidesTLL for having me on this year. Amazing conference, would recommend anyone to make the trip up 🇪🇪 Slides for the Sigma talk below 👇 sinn.io/sigma-decoding…
Today @RunReveal is announcing support for sigma detections and open sourcing our sigma rule evaluator, sigmalite. Read the blog, and check out the code! sigmalite.dev blog.runreveal.com/introducing-si…
New Sigma release r2024–09–02 is available for download. 🌟75 New Rules 🛡️43 Rule updates 🔬30 Rule Fixes Here is a snippet from this release - Added coverage for multiple GTFOBins. - Updates adding new file sharing domains (*.pages.dev, *.w3spaces.com, *.workers.dev) -…
Thanks to @Kostastsale contribution, UDL rule will also be available to download in next week release of @sigma_hq
I created a new #SigmaRule to catch suspicious Rundll32 executions involving UDL files. As explained on this nice blog by @TrustedSec, attackers can use this to phish for credentials. ⚠️ Heads up: UDL files can also legitimately be used to test database connections, so verify…
- MITRE D3FEND tag support. - New related type "Correlation" for easily linking between rules used in correlation. - New modifiers for datetime fields And many more things are coming in @sigma_hq Specification v2.1 later this year.
United States 트렌드
- 1. Jets 103K posts
- 2. Drake Maye 10.5K posts
- 3. James Franklin 36.5K posts
- 4. Justin Fields 20.4K posts
- 5. Broncos 44K posts
- 6. Penn State 50.3K posts
- 7. Aaron Glenn 8,562 posts
- 8. Puka 7,034 posts
- 9. Derrick Henry 2,251 posts
- 10. George Pickens 3,896 posts
- 11. Steelers 40.2K posts
- 12. Cooper Rush 1,801 posts
- 13. #RavensFlock 1,637 posts
- 14. Saints 45.1K posts
- 15. Cam Little N/A
- 16. Tyler Warren 2,003 posts
- 17. Boutte 2,388 posts
- 18. Sean Payton 3,657 posts
- 19. TMac 1,672 posts
- 20. London 205K posts
내가 좋아할 만한 콘텐츠
-
Nextron Systems
@nextronsystems -
Olaf Hartong
@olafhartong -
Eric Zimmerman
@EricRZimmerman -
The DFIR Report
@TheDFIRReport -
Roberto Rodriguez 🇵🇪
@Cyb3rWard0g -
Red Canary, a Zscaler company
@redcanary -
Security Onion
@securityonion -
Velociraptor
@velocidex -
SOC Prime
@SOC_Prime -
C2 Matrix | #C2Matrix
@c2_matrix -
Volexity
@Volexity -
ANY.RUN
@anyrun_app -
Mehmet Ergene
@Cyb3rMonk -
Tony Lambert
@ForensicITGuy -
Jonny Johnson
@JonnyJohnson_
Something went wrong.
Something went wrong.