Main Sigma Rule Repository
-
Updated
Jan 5, 2026 - Python
#
siem
Here are 207 public repositories matching this topic...
Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.
-
Updated
Dec 13, 2025 - Python
Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.
security osint alerting forensics dfir intrusion-detection siem digital-forensics offensive-security cyber-security network-security port-scanning forensic-analysis threat-intelligence mitre-attack forensics-investigations detection-engineering digitalforensics forensics-tools digitalforensicreadiness
-
Updated
Jan 4, 2024 - Python
DEPRECATED - MozDef: Mozilla Enterprise Defense Platform
-
Updated
Nov 2, 2021 - Python
A little tool to play with Azure Identity - Azure and Entra ID lab creation tool. Blog: https://medium.com/@iknowjason/sentinel-for-purple-teaming-183b7df7a2f4
-
Updated
Mar 21, 2025 - Python
A robust, and flexible open source User & Entity Behavior Analytics (UEBA) framework used for Security Analytics. Developed with luv by Data Scientists & Security Analysts from the Cyber Security Industry. [PRE-ALPHA]
react nodejs flask security elasticsearch machine-learning spark analytics tensorflow sklearn elk datascience cybersecurity siem information-security uba anomaly-detection user-behaviour ueba threathunting
-
Updated
Apr 25, 2024 - Python
Agentic SOC Platform: A powerful, flexible, open-source, and agent-centric automated security operations platform
-
Updated
Jan 8, 2026 - Python
Built-in Panther detection rules and policies
-
Updated
Jan 8, 2026 - Python
Open Source SIEM (Security Information and Event Management system).
security security-audit log-analysis log syslog web-application log-collector forensics secops siem log-management risk-assessment log-parser vulnerability-management risk-management security-tools log-monitoring security-analysis asset-management security-awareness
-
Updated
Aug 24, 2023 - Python
Open-source framework to detect outliers in Elasticsearch events
machine-learning statistics ml statistical-analysis outliers outlier-detection threat-hunting siem netsec anomaly-detection cirt security-monitoring security-operations ee-outliers
-
Updated
May 22, 2023 - Python
An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.
-
Updated
Dec 2, 2025 - Python
SIEGMA - Transform Sigma rules into SIEM consumables
-
Updated
Mar 10, 2025 - Python
ATHF is a framework for agentic threat hunting - building systems that can remember, learn, and act with increasing autonomy.
security automation pypi cybersecurity threat-hunting siem threat-analysis security-tools threat-intelligence ai-agents threat-detection threat-response detection-engineering agentic-ai thrunting
-
Updated
Jan 8, 2026 - Python
Fully automated host & network intrusion detection platform. Detects malware from behavioural patterns rather than signatures and enables deeper visibility than legacy tools.
security devops cloud monitoring vps vpc cybersecurity visibility suricata xdr siem osquery security-tools server-security vpc-endpoints
-
Updated
Apr 10, 2024 - Python
RequestShield is a 100% Free and OpenSource tool designed to analyze HTTP access.logs and identify suspicious HTTP requests and potential security threats. It uses factors like geolocation, abuse history, request volume, and suspicious request paths to assign a risk score to each IP, providing actionable insights for security monitoring.
-
Updated
Dec 2, 2024 - Python
Kong API Manager with Prometheus And Graylog
-
Updated
Apr 13, 2025 - Python
Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.
-
Updated
May 8, 2025 - Python
Sigma detection rules for hunting with the threathunting-keywords project
dfir threat-hunting siem blueteam detection-rules mitre-attack threat-detection threathunting detection-engineering sigma-rules forensicartifacts
-
Updated
Mar 2, 2025 - Python
Improve this page
Add a description, image, and links to the siem topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the siem topic, visit your repo's landing page and select "manage topics."