Repositories list

• BloodHound

  Public
  Six Degrees of Domain Admin

  PowerShell

  •

  GNU General Public License v3.0

  •1.8k•0•0•9•Updated May 11, 2025May 11, 2025

• slab-mdr-sublime-rules

  Public
  Sofecta Labs Sublime Detection Rules repository

  Python

  •

  MIT License

  •0•0•0•0•Updated Feb 11, 2025Feb 11, 2025

• Zircolite

  Public
  A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs

  Python

  •106•0•0•16•Updated Aug 9, 2024Aug 9, 2024

• chainsaw

  Public
  Rapidly Search and Hunt through Windows Event Logs

  Rust

  •

  GNU General Public License v3.0

  •294•0•0•0•Updated Aug 9, 2024Aug 9, 2024

• slab-elastic-esql

  Public
  Sofecta Labs Elastic ESQL repository

  0•0•0•0•Updated Mar 13, 2024Mar 13, 2024

• sigma

  Public
  Generic Signature Format for SIEM Systems

  Python

  •

  Other

  •2.4k•0•0•0•Updated Apr 22, 2022Apr 22, 2022

• signature-base

  Public
  Signature base for my scanner tools

  YARA

  •

  Other

  •649•0•0•0•Updated Apr 15, 2022Apr 15, 2022

• rules

  Public
  Repository of yara rules

  YARA

  •

  GNU General Public License v2.0

  •1k•0•0•0•Updated Apr 12, 2022Apr 12, 2022

• Loki

  Public
  Loki - Simple IOC and Incident Response Scanner

  Python

  •

  GNU General Public License v3.0

  •615•0•0•0•Updated Apr 8, 2022Apr 8, 2022

• gcp-chronicle-detection-rules

  Public
  Collection of YARA-L 2.0 sample rules for the Chronicle Detection API

  YARA

  •

  Apache License 2.0

  •116•0•0•0•Updated Mar 14, 2022Mar 14, 2022

• alerting-detection-strategy-framework

  Public
  A framework for developing alerting and detection strategies for incident response.

  MIT License

  •131•0•0•0•Updated Dec 17, 2021Dec 17, 2021