Tools

A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs

Splunk Security Content

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

Main Sigma Rule Repository

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.