Skip to content

Securonix/SigmaToSecuronix

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
config
config
 
 
docs/images
docs/images
 
 
omega
omega
 
 
sigma_rules
sigma_rules
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
pyproject.toml
pyproject.toml
 
 

Repository files navigation

SigmaToSecuronix

A simple tool for converting Sigma detection rules to Securonix Snypr Spotter queries.

Prerequisites

Installation

pip install securonix-cli

Usage

git clone https://github.com/Securonix/SigmaToSecuronix
cd SigmaToSecuronix
poetry install && poetry shell
securonix-cli convert --mapping config/mapping.yml input_file.yml

Options

  • --help : Show help message and exit
  • --mapping, -m: Sigma mapping file (required)

Output

Supported Functionality

  • Microsoft Windows
  • Endpoint Management Systems
  • Web Server
  • Web Proxy
  • Microsoft Windows Powershell
  • Next Generation Firewall

Contributions

This project welcomes contributions from the community. If you would like to contribute, please fork the repository and make your changes. Then, submit a pull request for review.

About

No description, website, or topics provided.

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages