Thomas Patzke
12 lines
463 B
Markdown
12 lines
463 B
Markdown
This package contains libraries for processing of [Sigma rules](https://github.com/Neo23x0/sigma) and the following
|
|
command line tools:
|
|
|
|
* *sigmac*: converter between Sigma rules and SIEM queries:
|
|
* Elasticsearch query strings
|
|
* Kibana JSON with searches
|
|
* Splunk SPL queries
|
|
* Elasticsearch X-Pack Watcher
|
|
* Logpoint queries
|
|
* *merge_sigma*: Merge Sigma collections into simple Sigma rules.
|
|
* *sigma2misp*: Import Sigma rules to MISP events.
|