Tools for the Generic Signature Format for SIEM Systems
Project description
This package contains libraries for processing of Sigma rules and the following command line tools:
- sigmac: converter between Sigma rules and SIEM queries:
- Elasticsearch query strings
- Kibana JSON with searches
- Splunk SPL queries
- Elasticsearch X-Pack Watcher
- Logpoint queries
- merge_sigma: Merge Sigma collections into simple Sigma rules.
- sigma2misp: Import Sigma rules to MISP events.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
sigmatools-0.16.0.tar.gz
(88.9 kB
view hashes)
Built Distribution
sigmatools-0.16.0-py3-none-any.whl
(134.9 kB
view hashes)
Close
Hashes for sigmatools-0.16.0-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 6b28b30efbaa5cbb967927ea4e31c617cc91a210aad6e0a00cbe11d4ea48c3cd |
|
MD5 | 8c8ba9eafe13aeb218123bbe731bad06 |
|
BLAKE2b-256 | c83f2b0a57093a12114ddaad77cf4ae9cbe36ba6133f669a77e2e2203246caa3 |