sigma
@sigma_hq
Generic Detection Rules for Log Data
Вам может понравиться
New Sigma release r2025-12-01 is available for download. 🌟35 New Rules 🛡️21 Rule updates 🔬30 Rule Fixes Explore the full release -> github.com/SigmaHQ/sigma/… The major update of this release is the introduction of windows regression testing in the CI. We now highly encourage…
The @sigma_hq repo is about to reach 10K 🌟. It would be nice if we could achieve this milestone before the end of the year. github.com/SigmaHQ/sigma If you have not already please star it and tell a friend to do the same.
Proud to share that DetectionStream is now collaborating with the Sigma community to create opportunities for people to learn and grow within detection engineering. We’ve set up two channels for general discussions and challenge creation. Join here: discord.gg/KfdbeQpp
Really happy with this collab 🔥 Come join the @sigma_hq server and discuss detectionstream.com Sigma challenges to learn and share your detection experience. The challenge creation channel will be a private channel accessible for vetted persons who are willing to…
Proud to share that DetectionStream is now collaborating with the Sigma community to create opportunities for people to learn and grow within detection engineering. We’ve set up two channels for general discussions and challenge creation. Join here: discord.gg/KfdbeQpp
If you ever wondered what goes into merging a Sigma rule in the @sigma_hq repo, check out the latest blog. SigmaHQ Quality Assurance Pipeline - blog.sigmahq.io/sigmahq-qualit… We delve into the process we go through to ensure the community contributed rules are up to par.
For all of the contributors that aim to propose enhancements or additions to the @sigma_hq specification in the future. We have introduced a new issue template that aims to track these proposals. We're calling it SEP (Sigma Enhancement Proposal). The template contains all the…
Regression (True Positive) testing is coming to @sigma_hq starting from the next rule release in December. We will introduce a new CI that will validate a rule against a log. We will start with EVTX logs and extend beyond to other formats and logsources We're also introducing a…
New Sigma release r2025-10-01 is available for download. 🌟37 New Rules 🛡️16 Rule updates 🔬45 Rule Fixes Here is a quick overview: - New AWS and Github based rules covering deletion of VPC flows, KMS imports, changing archive status or pages of a repo - Winrs usage as a…
We’d love to see more feedback from orgs that rely on Sigma rules Even simple stats from production use are valuable. - A rule of level high that triggered 236,992 times probably needs rework. - A rule of level critical that triggered 234 times probably needs rework. - A rule of…
Fun @sigma_hq stats for the end of the week. We have now reached 22 million package downloads since we started doing package releases 2 years ago. We also crossed 5700 PRs/Issues :)
⚡️ Sigma is shaping the future of detections. This Atomics on a Friday with @nas_bench explores: SigmaHQ deep dive sigconverter.io in action Expert insights on security content’s evolution 🎥 Full video: youtube.com/watch?v=rYhxQt…
youtube.com
YouTube
Mastering Sigma The Future of Security Content Atomics on a Friday
Because I and the rest of the maintainer team we dont have infinite time. I'm going to be pretty aggressive on PRs submitted to @sigma_hq github.com/SigmaHQ/sigma/ New so called DEs copy pasting random rules and not having the capacity to read the specs will lead to an auto close…
New Sigma release r2025-07-08 is available for download. 🌟43 New Rules 🛡️34 Rule updates 🔬27 Rule Fixes Explore the full release -> github.com/SigmaHQ/sigma/… This release introduces a bunch of new rules including detections for - Katz Stealer - MeshAgent usage -…
New Sigma release r2025-05-21 is available for download. 🌟15 New Rules 🛡️47 Rule updates 🔬13 Rule Fixes Explore the full release -> github.com/SigmaHQ/sigma/… This release focused mainly on updates and tunings of older rules, with newer detections covering NimScan, AdFind,…
Sigma rule packages have been downloaded more than 10M times since we started doing releases in late 2023! Last month package crossed the 2M mark today. 🚀 @sigma_hq
Open Sourced detection.studio here → github.com/northsh/detect… MIT License
🎉I am finally happy announce a brand new tool – detection.studio Sigma to SIEM conversion – done entirely locally (in-browser). Better support for Pipelines & Filters. Persistent workspaces, and Share & Export to Zip. Check it out down here👇
New Sigma release r2025–02–03 is available for download. 🌟5 New Rules 🛡️5 Rule updates 🔬14 Rule Fixes Explore the full release -> github.com/SigmaHQ/sigma/… This release saw the first wave of contribution from the @TheDFIRReport in a new collab we started with the team. 🔥…
Many people use @sigma_hq rules. That's great. We like to share detection knowledge. Don't be afraid to contribute in 2025. Even a simple False Positive is good. If your boss don't want just ask until having an yes 😝
The more I see private detections the more I realize that the @sigma_hq rule repo is a gold mine and it is actually insane that its free. 😌
United States Тренды
- 1. Black Friday 455K posts
- 2. Nebraska 11K posts
- 3. Iowa 12.5K posts
- 4. Rhule 2,248 posts
- 5. Lane Kiffin 8,018 posts
- 6. Jalon Daniels N/A
- 7. Swift 55.4K posts
- 8. Black Ops 7 Blueprint 9,670 posts
- 9. Go Birds 11.4K posts
- 10. Sumrall 3,161 posts
- 11. Egg Bowl 7,466 posts
- 12. #Huskers 1,221 posts
- 13. #kufball N/A
- 14. Mississippi State 5,066 posts
- 15. Kamario Taylor N/A
- 16. Sydney Brown N/A
- 17. UConn 5,423 posts
- 18. #CHIvsPHI N/A
- 19. Kansas 16.4K posts
- 20. Black Ops 7 XP 6,899 posts
Вам может понравиться
-
Nextron Systems
@nextronsystems -
Olaf Hartong
@olafhartong -
The DFIR Report
@TheDFIRReport -
Roberto Rodriguez 🇵🇪
@Cyb3rWard0g -
Red Canary, a Zscaler company
@redcanary -
Security Onion
@securityonion -
SOC Prime
@SOC_Prime -
Kostas
@Kostastsale -
C2 Matrix | #C2Matrix
@c2_matrix -
Volexity
@Volexity -
ANY.RUN
@anyrun_app -
Mehmet Ergene
@Cyb3rMonk -
Tony Lambert
@ForensicITGuy -
Jonny Johnson
@JonnyJohnson_ -
Jose Rodriguez 🇵🇪
@Cyb3rPandaH
Something went wrong.
Something went wrong.