René's URL Explorer Experiment

Title: sigma-rules · GitHub Topics · GitHub

Open Graph Title: Build software better, together

X Title: GitHub

Description: GitHub is where people build software. More than 150 million people use GitHub to discover, fork, and contribute to over 420 million projects.

Open Graph Description: GitHub is where people build software. More than 150 million people use GitHub to discover, fork, and contribute to over 420 million projects.

X Description: GitHub is where people build software. More than 150 million people use GitHub to discover, fork, and contribute to over 420 million projects.

Opengraph URL: https://github.com

X: github

direct link

Domain: patch-diff.githubusercontent.com

route-pattern	/topics/:topic_name(.:format)
route-controller	topics
route-action	show
fetch-nonce	v2:8277924b-2c7a-2f5b-a6b9-0ccf02400e82
current-catalog-service-hash	82c569b93da5c18ed649ebd4c2c79437db4611a6a1373e805a3cb001c64130b7
request-id	EB1C:8FB2E:2AE02E4:381EA69:698C3EFF
html-safe-nonce	1fc4274d96d7ba5d866d94caf33c8a75ebb74d515c666d32d62b65c6953f6aa3
visitor-payload	eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJFQjFDOjhGQjJFOjJBRTAyRTQ6MzgxRUE2OTo2OThDM0VGRiIsInZpc2l0b3JfaWQiOiI1MzUwMzI2MDU2MTUzNTMwMTExIiwicmVnaW9uX2VkZ2UiOiJpYWQiLCJyZWdpb25fcmVuZGVyIjoiaWFkIn0=
visitor-hmac	fa682f85ee850b0e33a205c0ce16321bc1b4efe86a70ae2e3350b7f60fbde6eb
github-keyboard-shortcuts	copilot
google-site-verification	Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I
octolytics-url	https://collector.github.com/github/collect
fb:app_id	1401488693436528
apple-itunes-app	app-id=1477376905, app-argument=https://github.com/topics/sigma-rules
og:site_name	GitHub
og:image	https://github.githubassets.com/assets/github-octocat-13c86b8b336d.png
og:image:type	image/png
og:image:width	1200
og:image:height	620
twitter:site:id	13334762
twitter:creator	github
twitter:creator:id	13334762
twitter:card	summary_large_image
twitter:image	https://github.githubassets.com/assets/github-logo-55c5b9a1fe52.png
twitter:image:width	1200
twitter:image:height	1200
hostname	github.com
expected-hostname	github.com
None	640eeb7b6ff4d8d106235d228c0c286e82592d4d2403227b5b2b4fc5832297a4
turbo-cache-control	no-preview
turbo-body-classes	logged-out env-production page-responsive
disable-turbo	false
browser-stats-url	https://api.github.com/_private/browser/stats
browser-errors-url	https://api.github.com/_private/browser/errors
release	3d444f0a47beeeac94cddbb51c91ab408befe8d4
ui-target	full
theme-color	#1e2327
color-scheme	light dark

Links:

Skip to content	https://patch-diff.githubusercontent.com/topics/sigma-rules#start-of-content
	https://patch-diff.githubusercontent.com/
Sign in	https://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2Ftopics%2Fsigma-rules
GitHub CopilotWrite better code with AI	https://github.com/features/copilot
GitHub SparkBuild and deploy intelligent apps	https://github.com/features/spark
GitHub ModelsManage and compare prompts	https://github.com/features/models
MCP RegistryNewIntegrate external tools	https://github.com/mcp
ActionsAutomate any workflow	https://github.com/features/actions
CodespacesInstant dev environments	https://github.com/features/codespaces
IssuesPlan and track work	https://github.com/features/issues
Code ReviewManage code changes	https://github.com/features/code-review
GitHub Advanced SecurityFind and fix vulnerabilities	https://github.com/security/advanced-security
Code securitySecure your code as you build	https://github.com/security/advanced-security/code-security
Secret protectionStop leaks before they start	https://github.com/security/advanced-security/secret-protection
Why GitHub	https://github.com/why-github
Documentation	https://docs.github.com
Blog	https://github.blog
Changelog	https://github.blog/changelog
Marketplace	https://github.com/marketplace
View all features	https://github.com/features
Enterprises	https://github.com/enterprise
Small and medium teams	https://github.com/team
Startups	https://github.com/enterprise/startups
Nonprofits	https://github.com/solutions/industry/nonprofits
App Modernization	https://github.com/solutions/use-case/app-modernization
DevSecOps	https://github.com/solutions/use-case/devsecops
DevOps	https://github.com/solutions/use-case/devops
CI/CD	https://github.com/solutions/use-case/ci-cd
View all use cases	https://github.com/solutions/use-case
Healthcare	https://github.com/solutions/industry/healthcare
Financial services	https://github.com/solutions/industry/financial-services
Manufacturing	https://github.com/solutions/industry/manufacturing
Government	https://github.com/solutions/industry/government
View all industries	https://github.com/solutions/industry
View all solutions	https://github.com/solutions
AI	https://github.com/resources/articles?topic=ai
Software Development	https://github.com/resources/articles?topic=software-development
DevOps	https://github.com/resources/articles?topic=devops
Security	https://github.com/resources/articles?topic=security
View all topics	https://github.com/resources/articles
Customer stories	https://github.com/customer-stories
Events & webinars	https://github.com/resources/events
Ebooks & reports	https://github.com/resources/whitepapers
Business insights	https://github.com/solutions/executive-insights
GitHub Skills	https://skills.github.com
Documentation	https://docs.github.com
Customer support	https://support.github.com
Community forum	https://github.com/orgs/community/discussions
Trust center	https://github.com/trust-center
Partners	https://github.com/partners
GitHub SponsorsFund open source developers	https://github.com/sponsors
Security Lab	https://securitylab.github.com
Maintainer Community	https://maintainers.github.com
Accelerator	https://github.com/accelerator
Archive Program	https://archiveprogram.github.com
Topics	https://github.com/topics
Trending	https://github.com/trending
Collections	https://github.com/collections
Enterprise platformAI-powered developer platform	https://github.com/enterprise
GitHub Advanced SecurityEnterprise-grade security features	https://github.com/security/advanced-security
Copilot for BusinessEnterprise-grade AI features	https://github.com/features/copilot/copilot-business
Premium SupportEnterprise-grade 24/7 support	https://github.com/premium-support
Pricing	https://github.com/pricing
Search syntax tips	https://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
documentation	https://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
Sign in	https://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2Ftopics%2Fsigma-rules
Sign up	https://patch-diff.githubusercontent.com/signup?ref_cta=Sign+up&ref_loc=header+logged+out&ref_page=%2Ftopics%2Fsigma-rules&source=header
Reload	https://patch-diff.githubusercontent.com/topics/sigma-rules
Reload	https://patch-diff.githubusercontent.com/topics/sigma-rules
Reload	https://patch-diff.githubusercontent.com/topics/sigma-rules
Explore	https://patch-diff.githubusercontent.com/explore
Topics	https://patch-diff.githubusercontent.com/topics
Trending	https://patch-diff.githubusercontent.com/trending
Collections	https://patch-diff.githubusercontent.com/collections
Events	https://patch-diff.githubusercontent.com/events
GitHub Sponsors	https://patch-diff.githubusercontent.com/sponsors/explore
Star	https://patch-diff.githubusercontent.com/login?return_to=%2Ftopic.sigma-rules
All 79	https://github.com/topics/sigma-rules
Python 35	https://github.com/topics/sigma-rules?l=python
C# 4	https://github.com/topics/sigma-rules?l=c%23
Go 4	https://github.com/topics/sigma-rules?l=go
YARA 4	https://github.com/topics/sigma-rules?l=yara
PowerShell 3	https://github.com/topics/sigma-rules?l=powershell
HTML 2	https://github.com/topics/sigma-rules?l=html
JavaScript 2	https://github.com/topics/sigma-rules?l=javascript
Rust 2	https://github.com/topics/sigma-rules?l=rust
C 1	https://github.com/topics/sigma-rules?l=c
EJS 1	https://github.com/topics/sigma-rules?l=ejs
Most stars	https://patch-diff.githubusercontent.com/topics/sigma-rules?o=desc&s=stars
Fewest stars	https://patch-diff.githubusercontent.com/topics/sigma-rules?o=asc&s=stars
Most forks	https://patch-diff.githubusercontent.com/topics/sigma-rules?o=desc&s=forks
Fewest forks	https://patch-diff.githubusercontent.com/topics/sigma-rules?o=asc&s=forks
Recently updated	https://patch-diff.githubusercontent.com/topics/sigma-rules?o=desc&s=updated
Least recently updated	https://patch-diff.githubusercontent.com/topics/sigma-rules?o=asc&s=updated
ion-storm	https://patch-diff.githubusercontent.com/ion-storm
sysmon-config	https://patch-diff.githubusercontent.com/ion-storm/sysmon-config
Star 818	https://patch-diff.githubusercontent.com/login?return_to=%2Fion-storm%2Fsysmon-config
Code	https://patch-diff.githubusercontent.com/ion-storm/sysmon-config
Issues	https://patch-diff.githubusercontent.com/ion-storm/sysmon-config/issues
Pull requests	https://patch-diff.githubusercontent.com/ion-storm/sysmon-config/pulls
graylog	https://patch-diff.githubusercontent.com/topics/graylog
logging	https://patch-diff.githubusercontent.com/topics/logging
forensics	https://patch-diff.githubusercontent.com/topics/forensics
dfir	https://patch-diff.githubusercontent.com/topics/dfir
sysmon	https://patch-diff.githubusercontent.com/topics/sysmon
threat-hunting	https://patch-diff.githubusercontent.com/topics/threat-hunting
siem	https://patch-diff.githubusercontent.com/topics/siem
threat-sharing	https://patch-diff.githubusercontent.com/topics/threat-sharing
threatintel	https://patch-diff.githubusercontent.com/topics/threatintel
netsec	https://patch-diff.githubusercontent.com/topics/netsec
sysinternals	https://patch-diff.githubusercontent.com/topics/sysinternals
graylog-plugin	https://patch-diff.githubusercontent.com/topics/graylog-plugin
forensic-analysis	https://patch-diff.githubusercontent.com/topics/forensic-analysis
threat-analysis	https://patch-diff.githubusercontent.com/topics/threat-analysis
threat-intelligence	https://patch-diff.githubusercontent.com/topics/threat-intelligence
humio	https://patch-diff.githubusercontent.com/topics/humio
mitre-attack	https://patch-diff.githubusercontent.com/topics/mitre-attack
sigma-rules	https://patch-diff.githubusercontent.com/topics/sigma-rules
forensicartifacts	https://patch-diff.githubusercontent.com/topics/forensicartifacts
digitalforensics	https://patch-diff.githubusercontent.com/topics/digitalforensics
wagga40	https://patch-diff.githubusercontent.com/wagga40
Zircolite	https://patch-diff.githubusercontent.com/wagga40/Zircolite
Star 779	https://patch-diff.githubusercontent.com/login?return_to=%2Fwagga40%2FZircolite
Code	https://patch-diff.githubusercontent.com/wagga40/Zircolite
Issues	https://patch-diff.githubusercontent.com/wagga40/Zircolite/issues
Pull requests	https://patch-diff.githubusercontent.com/wagga40/Zircolite/pulls
Discussions	https://patch-diff.githubusercontent.com/wagga40/Zircolite/discussions
detection	https://patch-diff.githubusercontent.com/topics/detection
python3	https://patch-diff.githubusercontent.com/topics/python3
forensics	https://patch-diff.githubusercontent.com/topics/forensics
sysmon	https://patch-diff.githubusercontent.com/topics/sysmon
auditd	https://patch-diff.githubusercontent.com/topics/auditd
sigma	https://patch-diff.githubusercontent.com/topics/sigma
evtx	https://patch-diff.githubusercontent.com/topics/evtx
sigma-rules	https://patch-diff.githubusercontent.com/topics/sigma-rules
forensics-tools	https://patch-diff.githubusercontent.com/topics/forensics-tools
pysigma	https://patch-diff.githubusercontent.com/topics/pysigma
evtxtract	https://patch-diff.githubusercontent.com/topics/evtxtract
Elemental-attack	https://patch-diff.githubusercontent.com/Elemental-attack
Elemental	https://patch-diff.githubusercontent.com/Elemental-attack/Elemental
Star 320	https://patch-diff.githubusercontent.com/login?return_to=%2FElemental-attack%2FElemental
Code	https://patch-diff.githubusercontent.com/Elemental-attack/Elemental
Issues	https://patch-diff.githubusercontent.com/Elemental-attack/Elemental/issues
Pull requests	https://patch-diff.githubusercontent.com/Elemental-attack/Elemental/pulls
attack-detection	https://patch-diff.githubusercontent.com/topics/attack-detection
threat-intelligence	https://patch-diff.githubusercontent.com/topics/threat-intelligence
attack-defense	https://patch-diff.githubusercontent.com/topics/attack-defense
mitre-attack	https://patch-diff.githubusercontent.com/topics/mitre-attack
atomicredteam	https://patch-diff.githubusercontent.com/topics/atomicredteam
sigma-rules	https://patch-diff.githubusercontent.com/topics/sigma-rules
krdmnbrk	https://patch-diff.githubusercontent.com/krdmnbrk
AttackRuleMap	https://patch-diff.githubusercontent.com/krdmnbrk/AttackRuleMap
Star 194	https://patch-diff.githubusercontent.com/login?return_to=%2Fkrdmnbrk%2FAttackRuleMap
Code	https://patch-diff.githubusercontent.com/krdmnbrk/AttackRuleMap
Issues	https://patch-diff.githubusercontent.com/krdmnbrk/AttackRuleMap/issues
Pull requests	https://patch-diff.githubusercontent.com/krdmnbrk/AttackRuleMap/pulls
splunk	https://patch-diff.githubusercontent.com/topics/splunk
atomicredteam	https://patch-diff.githubusercontent.com/topics/atomicredteam
detection-engineering	https://patch-diff.githubusercontent.com/topics/detection-engineering
sigma-rules	https://patch-diff.githubusercontent.com/topics/sigma-rules
	https://patch-diff.githubusercontent.com/phish-report/IOK
phish-report	https://patch-diff.githubusercontent.com/phish-report
IOK	https://patch-diff.githubusercontent.com/phish-report/IOK
Star 190	https://patch-diff.githubusercontent.com/login?return_to=%2Fphish-report%2FIOK
Code	https://patch-diff.githubusercontent.com/phish-report/IOK
Issues	https://patch-diff.githubusercontent.com/phish-report/IOK/issues
Pull requests	https://patch-diff.githubusercontent.com/phish-report/IOK/pulls
Discussions	https://patch-diff.githubusercontent.com/phish-report/IOK/discussions
phishing	https://patch-diff.githubusercontent.com/topics/phishing
phishing-kit	https://patch-diff.githubusercontent.com/topics/phishing-kit
phishing-detection	https://patch-diff.githubusercontent.com/topics/phishing-detection
sigma-rules	https://patch-diff.githubusercontent.com/topics/sigma-rules
nasbench	https://patch-diff.githubusercontent.com/nasbench
SIGMA-Resources	https://patch-diff.githubusercontent.com/nasbench/SIGMA-Resources
Star 182	https://patch-diff.githubusercontent.com/login?return_to=%2Fnasbench%2FSIGMA-Resources
Code	https://patch-diff.githubusercontent.com/nasbench/SIGMA-Resources
Issues	https://patch-diff.githubusercontent.com/nasbench/SIGMA-Resources/issues
Pull requests	https://patch-diff.githubusercontent.com/nasbench/SIGMA-Resources/pulls
Discussions	https://patch-diff.githubusercontent.com/nasbench/SIGMA-Resources/discussions
windows	https://patch-diff.githubusercontent.com/topics/windows
linux	https://patch-diff.githubusercontent.com/topics/linux
rules	https://patch-diff.githubusercontent.com/topics/rules
learning	https://patch-diff.githubusercontent.com/topics/learning
awesome	https://patch-diff.githubusercontent.com/topics/awesome
detection	https://patch-diff.githubusercontent.com/topics/detection
resources	https://patch-diff.githubusercontent.com/topics/resources
sigma	https://patch-diff.githubusercontent.com/topics/sigma
detection-engineering	https://patch-diff.githubusercontent.com/topics/detection-engineering
sigma-rules	https://patch-diff.githubusercontent.com/topics/sigma-rules
sgInnora	https://patch-diff.githubusercontent.com/sgInnora
sharpeye	https://patch-diff.githubusercontent.com/sgInnora/sharpeye
Star 175	https://patch-diff.githubusercontent.com/login?return_to=%2FsgInnora%2Fsharpeye
Code	https://patch-diff.githubusercontent.com/sgInnora/sharpeye
Issues	https://patch-diff.githubusercontent.com/sgInnora/sharpeye/issues
Pull requests	https://patch-diff.githubusercontent.com/sgInnora/sharpeye/pulls
Discussions	https://patch-diff.githubusercontent.com/sgInnora/sharpeye/discussions
python	https://patch-diff.githubusercontent.com/topics/python
linux	https://patch-diff.githubusercontent.com/topics/linux
kubernetes	https://patch-diff.githubusercontent.com/topics/kubernetes
golang	https://patch-diff.githubusercontent.com/topics/golang
security	https://patch-diff.githubusercontent.com/topics/security
machine-learning	https://patch-diff.githubusercontent.com/topics/machine-learning
monitoring	https://patch-diff.githubusercontent.com/topics/monitoring
cybersecurity	https://patch-diff.githubusercontent.com/topics/cybersecurity
ids	https://patch-diff.githubusercontent.com/topics/ids
intrusion-detection	https://patch-diff.githubusercontent.com/topics/intrusion-detection
cloud-native	https://patch-diff.githubusercontent.com/topics/cloud-native
threat-hunting	https://patch-diff.githubusercontent.com/topics/threat-hunting
ebpf	https://patch-diff.githubusercontent.com/topics/ebpf
anomaly-detection	https://patch-diff.githubusercontent.com/topics/anomaly-detection
sigma-rules	https://patch-diff.githubusercontent.com/topics/sigma-rules
rootkit-detection	https://patch-diff.githubusercontent.com/topics/rootkit-detection
cryptominer-detection	https://patch-diff.githubusercontent.com/topics/cryptominer-detection
blackberry	https://patch-diff.githubusercontent.com/blackberry
threat-research-and-intelligence	https://patch-diff.githubusercontent.com/blackberry/threat-research-and-intelligence
Star 100	https://patch-diff.githubusercontent.com/login?return_to=%2Fblackberry%2Fthreat-research-and-intelligence
Code	https://patch-diff.githubusercontent.com/blackberry/threat-research-and-intelligence
Issues	https://patch-diff.githubusercontent.com/blackberry/threat-research-and-intelligence/issues
Pull requests	https://patch-diff.githubusercontent.com/blackberry/threat-research-and-intelligence/pulls
machine-learning	https://patch-diff.githubusercontent.com/topics/machine-learning
research	https://patch-diff.githubusercontent.com/topics/research
artificial-intelligence	https://patch-diff.githubusercontent.com/topics/artificial-intelligence
iocs	https://patch-diff.githubusercontent.com/topics/iocs
yara-rules	https://patch-diff.githubusercontent.com/topics/yara-rules
threatintelligence	https://patch-diff.githubusercontent.com/topics/threatintelligence
suricata-rules	https://patch-diff.githubusercontent.com/topics/suricata-rules
sigma-rules	https://patch-diff.githubusercontent.com/topics/sigma-rules
3CORESec	https://patch-diff.githubusercontent.com/3CORESec
S2AN	https://patch-diff.githubusercontent.com/3CORESec/S2AN
Star 91	https://patch-diff.githubusercontent.com/login?return_to=%2F3CORESec%2FS2AN
Code	https://patch-diff.githubusercontent.com/3CORESec/S2AN
Issues	https://patch-diff.githubusercontent.com/3CORESec/S2AN/issues
Pull requests	https://patch-diff.githubusercontent.com/3CORESec/S2AN/pulls
suricata	https://patch-diff.githubusercontent.com/topics/suricata
threat-hunting	https://patch-diff.githubusercontent.com/topics/threat-hunting
threat-modeling	https://patch-diff.githubusercontent.com/topics/threat-modeling
sigma	https://patch-diff.githubusercontent.com/topics/sigma
mitre-attack	https://patch-diff.githubusercontent.com/topics/mitre-attack
suricata-rules	https://patch-diff.githubusercontent.com/topics/suricata-rules
sigma-rules	https://patch-diff.githubusercontent.com/topics/sigma-rules
AttackIQ	https://patch-diff.githubusercontent.com/AttackIQ
SigmAIQ	https://patch-diff.githubusercontent.com/AttackIQ/SigmAIQ
Star 91	https://patch-diff.githubusercontent.com/login?return_to=%2FAttackIQ%2FSigmAIQ
Code	https://patch-diff.githubusercontent.com/AttackIQ/SigmAIQ
Issues	https://patch-diff.githubusercontent.com/AttackIQ/SigmAIQ/issues
Pull requests	https://patch-diff.githubusercontent.com/AttackIQ/SigmAIQ/pulls
Discussions	https://patch-diff.githubusercontent.com/AttackIQ/SigmAIQ/discussions
security	https://patch-diff.githubusercontent.com/topics/security
python3	https://patch-diff.githubusercontent.com/topics/python3
sigma	https://patch-diff.githubusercontent.com/topics/sigma
security-tools	https://patch-diff.githubusercontent.com/topics/security-tools
detection-engineering	https://patch-diff.githubusercontent.com/topics/detection-engineering
sigma-rules	https://patch-diff.githubusercontent.com/topics/sigma-rules
llm	https://patch-diff.githubusercontent.com/topics/llm
langchain	https://patch-diff.githubusercontent.com/topics/langchain
	https://patch-diff.githubusercontent.com/mthcht/ThreatHunting-Keywords-sigma-rules
mthcht	https://patch-diff.githubusercontent.com/mthcht
ThreatHunting-Keywords-sigma-rules	https://patch-diff.githubusercontent.com/mthcht/ThreatHunting-Keywords-sigma-rules
Sponsor	https://patch-diff.githubusercontent.com/sponsors/mthcht
Star 58	https://patch-diff.githubusercontent.com/login?return_to=%2Fmthcht%2FThreatHunting-Keywords-sigma-rules
Code	https://patch-diff.githubusercontent.com/mthcht/ThreatHunting-Keywords-sigma-rules
Issues	https://patch-diff.githubusercontent.com/mthcht/ThreatHunting-Keywords-sigma-rules/issues
Pull requests	https://patch-diff.githubusercontent.com/mthcht/ThreatHunting-Keywords-sigma-rules/pulls
dfir	https://patch-diff.githubusercontent.com/topics/dfir
threat-hunting	https://patch-diff.githubusercontent.com/topics/threat-hunting
siem	https://patch-diff.githubusercontent.com/topics/siem
blueteam	https://patch-diff.githubusercontent.com/topics/blueteam
detection-rules	https://patch-diff.githubusercontent.com/topics/detection-rules
mitre-attack	https://patch-diff.githubusercontent.com/topics/mitre-attack
threat-detection	https://patch-diff.githubusercontent.com/topics/threat-detection
threathunting	https://patch-diff.githubusercontent.com/topics/threathunting
detection-engineering	https://patch-diff.githubusercontent.com/topics/detection-engineering
sigma-rules	https://patch-diff.githubusercontent.com/topics/sigma-rules
forensicartifacts	https://patch-diff.githubusercontent.com/topics/forensicartifacts
Saeros-Security	https://patch-diff.githubusercontent.com/Saeros-Security
Saeros	https://patch-diff.githubusercontent.com/Saeros-Security/Saeros
Star 29	https://patch-diff.githubusercontent.com/login?return_to=%2FSaeros-Security%2FSaeros
Code	https://patch-diff.githubusercontent.com/Saeros-Security/Saeros
Issues	https://patch-diff.githubusercontent.com/Saeros-Security/Saeros/issues
Pull requests	https://patch-diff.githubusercontent.com/Saeros-Security/Saeros/pulls
Discussions	https://patch-diff.githubusercontent.com/Saeros-Security/Saeros/discussions
windows	https://patch-diff.githubusercontent.com/topics/windows
security	https://patch-diff.githubusercontent.com/topics/security
events	https://patch-diff.githubusercontent.com/topics/events
csharp	https://patch-diff.githubusercontent.com/topics/csharp
dotnet	https://patch-diff.githubusercontent.com/topics/dotnet
wpf	https://patch-diff.githubusercontent.com/topics/wpf
detection	https://patch-diff.githubusercontent.com/topics/detection
incident-response	https://patch-diff.githubusercontent.com/topics/incident-response
forensics	https://patch-diff.githubusercontent.com/topics/forensics
dfir	https://patch-diff.githubusercontent.com/topics/dfir
cybersecurity	https://patch-diff.githubusercontent.com/topics/cybersecurity
etw	https://patch-diff.githubusercontent.com/topics/etw
threat-hunting	https://patch-diff.githubusercontent.com/topics/threat-hunting
sigma	https://patch-diff.githubusercontent.com/topics/sigma
blueteam	https://patch-diff.githubusercontent.com/topics/blueteam
windows-event-logs	https://patch-diff.githubusercontent.com/topics/windows-event-logs
sigma-rules	https://patch-diff.githubusercontent.com/topics/sigma-rules
forensics-tools	https://patch-diff.githubusercontent.com/topics/forensics-tools
u-siem	https://patch-diff.githubusercontent.com/u-siem
u-siem-core	https://patch-diff.githubusercontent.com/u-siem/u-siem-core
Star 28	https://patch-diff.githubusercontent.com/login?return_to=%2Fu-siem%2Fu-siem-core
Code	https://patch-diff.githubusercontent.com/u-siem/u-siem-core
Issues	https://patch-diff.githubusercontent.com/u-siem/u-siem-core/issues
Pull requests	https://patch-diff.githubusercontent.com/u-siem/u-siem-core/pulls
Discussions	https://patch-diff.githubusercontent.com/u-siem/u-siem-core/discussions
rust	https://patch-diff.githubusercontent.com/topics/rust
security	https://patch-diff.githubusercontent.com/topics/security
siem	https://patch-diff.githubusercontent.com/topics/siem
sigma-rules	https://patch-diff.githubusercontent.com/topics/sigma-rules
sysflow-telemetry	https://patch-diff.githubusercontent.com/sysflow-telemetry
sf-processor	https://patch-diff.githubusercontent.com/sysflow-telemetry/sf-processor
Star 18	https://patch-diff.githubusercontent.com/login?return_to=%2Fsysflow-telemetry%2Fsf-processor
Code	https://patch-diff.githubusercontent.com/sysflow-telemetry/sf-processor
Issues	https://patch-diff.githubusercontent.com/sysflow-telemetry/sf-processor/issues
Pull requests	https://patch-diff.githubusercontent.com/sysflow-telemetry/sf-processor/pulls
rules	https://patch-diff.githubusercontent.com/topics/rules
real-time	https://patch-diff.githubusercontent.com/topics/real-time
analytics	https://patch-diff.githubusercontent.com/topics/analytics
plugins	https://patch-diff.githubusercontent.com/topics/plugins
rules-engine	https://patch-diff.githubusercontent.com/topics/rules-engine
sigma	https://patch-diff.githubusercontent.com/topics/sigma
falco	https://patch-diff.githubusercontent.com/topics/falco
otel	https://patch-diff.githubusercontent.com/topics/otel
open-telemetry	https://patch-diff.githubusercontent.com/topics/open-telemetry
sigma-rules	https://patch-diff.githubusercontent.com/topics/sigma-rules
falco-rules	https://patch-diff.githubusercontent.com/topics/falco-rules
otel-agent	https://patch-diff.githubusercontent.com/topics/otel-agent
marirs	https://patch-diff.githubusercontent.com/marirs
sigma-convert	https://patch-diff.githubusercontent.com/marirs/sigma-convert
Star 13	https://patch-diff.githubusercontent.com/login?return_to=%2Fmarirs%2Fsigma-convert
Code	https://patch-diff.githubusercontent.com/marirs/sigma-convert
Issues	https://patch-diff.githubusercontent.com/marirs/sigma-convert/issues
Pull requests	https://patch-diff.githubusercontent.com/marirs/sigma-convert/pulls
rust-lang	https://patch-diff.githubusercontent.com/topics/rust-lang
sigma	https://patch-diff.githubusercontent.com/topics/sigma
rust-crate	https://patch-diff.githubusercontent.com/topics/rust-crate
sigma-rules	https://patch-diff.githubusercontent.com/topics/sigma-rules
sigma-convert	https://patch-diff.githubusercontent.com/topics/sigma-convert
	https://patch-diff.githubusercontent.com/muchdogesec/sigma2stix
muchdogesec	https://patch-diff.githubusercontent.com/muchdogesec
sigma2stix	https://patch-diff.githubusercontent.com/muchdogesec/sigma2stix
Star 12	https://patch-diff.githubusercontent.com/login?return_to=%2Fmuchdogesec%2Fsigma2stix
Code	https://patch-diff.githubusercontent.com/muchdogesec/sigma2stix
Issues	https://patch-diff.githubusercontent.com/muchdogesec/sigma2stix/issues
Pull requests	https://patch-diff.githubusercontent.com/muchdogesec/sigma2stix/pulls
stix2	https://patch-diff.githubusercontent.com/topics/stix2
sigma-rules	https://patch-diff.githubusercontent.com/topics/sigma-rules
RussianPanda95	https://patch-diff.githubusercontent.com/RussianPanda95
Sigma-Rules	https://patch-diff.githubusercontent.com/RussianPanda95/Sigma-Rules
Star 12	https://patch-diff.githubusercontent.com/login?return_to=%2FRussianPanda95%2FSigma-Rules
Code	https://patch-diff.githubusercontent.com/RussianPanda95/Sigma-Rules
Issues	https://patch-diff.githubusercontent.com/RussianPanda95/Sigma-Rules/issues
Pull requests	https://patch-diff.githubusercontent.com/RussianPanda95/Sigma-Rules/pulls
malware-research	https://patch-diff.githubusercontent.com/topics/malware-research
malware-detection	https://patch-diff.githubusercontent.com/topics/malware-detection
sigma-rules	https://patch-diff.githubusercontent.com/topics/sigma-rules
technique-detection	https://patch-diff.githubusercontent.com/topics/technique-detection
SUmidcyber	https://patch-diff.githubusercontent.com/SUmidcyber
ZeroScout	https://patch-diff.githubusercontent.com/SUmidcyber/ZeroScout
Star 10	https://patch-diff.githubusercontent.com/login?return_to=%2FSUmidcyber%2FZeroScout
Code	https://patch-diff.githubusercontent.com/SUmidcyber/ZeroScout
Issues	https://patch-diff.githubusercontent.com/SUmidcyber/ZeroScout/issues
Pull requests	https://patch-diff.githubusercontent.com/SUmidcyber/ZeroScout/pulls
python	https://patch-diff.githubusercontent.com/topics/python
cli	https://patch-diff.githubusercontent.com/topics/cli
detection	https://patch-diff.githubusercontent.com/topics/detection
static-analysis	https://patch-diff.githubusercontent.com/topics/static-analysis
incident-response	https://patch-diff.githubusercontent.com/topics/incident-response
dfir	https://patch-diff.githubusercontent.com/topics/dfir
threat-hunting	https://patch-diff.githubusercontent.com/topics/threat-hunting
malware-analysis	https://patch-diff.githubusercontent.com/topics/malware-analysis
yara	https://patch-diff.githubusercontent.com/topics/yara
blue-team	https://patch-diff.githubusercontent.com/topics/blue-team
soc-tools	https://patch-diff.githubusercontent.com/topics/soc-tools
sigma-rules	https://patch-diff.githubusercontent.com/topics/sigma-rules
ransomware-dectection	https://patch-diff.githubusercontent.com/topics/ransomware-dectection
war-rom	https://patch-diff.githubusercontent.com/topics/war-rom
wikijm	https://patch-diff.githubusercontent.com/wikijm
ConvertSigmaRepo2SentinelOnePQ	https://patch-diff.githubusercontent.com/wikijm/ConvertSigmaRepo2SentinelOnePQ
Star 10	https://patch-diff.githubusercontent.com/login?return_to=%2Fwikijm%2FConvertSigmaRepo2SentinelOnePQ
Code	https://patch-diff.githubusercontent.com/wikijm/ConvertSigmaRepo2SentinelOnePQ
Issues	https://patch-diff.githubusercontent.com/wikijm/ConvertSigmaRepo2SentinelOnePQ/issues
Pull requests	https://patch-diff.githubusercontent.com/wikijm/ConvertSigmaRepo2SentinelOnePQ/pulls
Discussions	https://patch-diff.githubusercontent.com/wikijm/ConvertSigmaRepo2SentinelOnePQ/discussions
sigma	https://patch-diff.githubusercontent.com/topics/sigma
github-actions	https://patch-diff.githubusercontent.com/topics/github-actions
sigma-rules	https://patch-diff.githubusercontent.com/topics/sigma-rules
sentinelone	https://patch-diff.githubusercontent.com/topics/sentinelone
sentinelone-singularity	https://patch-diff.githubusercontent.com/topics/sentinelone-singularity
Saeros-Security	https://patch-diff.githubusercontent.com/Saeros-Security
Sonar	https://patch-diff.githubusercontent.com/Saeros-Security/Sonar
Star 9	https://patch-diff.githubusercontent.com/login?return_to=%2FSaeros-Security%2FSonar
Code	https://patch-diff.githubusercontent.com/Saeros-Security/Sonar
Issues	https://patch-diff.githubusercontent.com/Saeros-Security/Sonar/issues
Pull requests	https://patch-diff.githubusercontent.com/Saeros-Security/Sonar/pulls
windows	https://patch-diff.githubusercontent.com/topics/windows
security	https://patch-diff.githubusercontent.com/topics/security
csharp	https://patch-diff.githubusercontent.com/topics/csharp
dotnet	https://patch-diff.githubusercontent.com/topics/dotnet
dfir	https://patch-diff.githubusercontent.com/topics/dfir
cybersecurity	https://patch-diff.githubusercontent.com/topics/cybersecurity
sigma	https://patch-diff.githubusercontent.com/topics/sigma
blueteam	https://patch-diff.githubusercontent.com/topics/blueteam
sigma-rules	https://patch-diff.githubusercontent.com/topics/sigma-rules
forensic-tools	https://patch-diff.githubusercontent.com/topics/forensic-tools
Curate this topic	https://github.com/github/explore/tree/master/CONTRIBUTING.md?source=add-description-sigma-rules
Learn more	https://docs.github.com/en/articles/classifying-your-repository-with-topics
	https://github.com
Terms	https://docs.github.com/site-policy/github-terms/github-terms-of-service
Privacy	https://docs.github.com/site-policy/privacy-policies/github-privacy-statement
Security	https://github.com/security
Status	https://www.githubstatus.com/
Community	https://github.community/
Docs	https://docs.github.com/
Contact	https://support.github.com?tags=dotcom-footer

Viewport: width=device-width

URLs of crawlers that visited me.