Skip to content

Pull requests: SigmaHQ/sigma

New pull request New
23 Open 4,275 Closed
23 Open 4,275 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Add detection rule for MeshAgent command execution Rules Windows Pull request add/update windows related rules
#5020 opened Sep 21, 2024 by tsale Loading…
github-new-rules Rules
#5018 opened Sep 20, 2024 by saakovv Loading…
Modify or Delete AWS RDS Cluster Rules
#5017 opened Sep 20, 2024 by saakovv Loading…
CreateFunctionUrlConfig Rules
#5016 opened Sep 20, 2024 by saakovv Loading…
DeleteSAMLProvider AWS Rules
#5015 opened Sep 20, 2024 by saakovv Loading…
1
remove the dual use tool nmap from "Linux HackTool Execution" Linux Pull request add/update linux related rules Rules
#5013 opened Sep 19, 2024 by ruppde Loading…
Added the string corresponding to "{"alg":" since some token headers start with this Rules Windows Pull request add/update windows related rules Work In Progress Some changes are needed
#5012 opened Sep 18, 2024 by ionsor Loading…
@nasbench
1
sigma rules around using MSI for privilege escalation Rules Windows Pull request add/update windows related rules Work In Progress Some changes are needed
#5010 opened Sep 16, 2024 by sec-hbaer Loading…
@nasbench
1
Update proc_creation_win_hktl_certipy.yml Rules Windows Pull request add/update windows related rules Work In Progress Some changes are needed
#5008 opened Sep 13, 2024 by BlackB0lt Loading…
@nasbench
Create proc_creation_win_code_devtunnel_tunneling.yaml 2nd Review Needed PR need a second approval Rules Windows Pull request add/update windows related rules Work In Progress Some changes are needed
#5004 opened Sep 9, 2024 by 0xAnalyst Loading…
11
Sigma FP fixes Rules Windows Pull request add/update windows related rules Work In Progress Some changes are needed
#4994 opened Sep 2, 2024 by djlukic Draft
@nasbench
5
Add Sigma rule for CVE-2024-38063 IPv6 memory corruption detection Author Input Required changes the require information from original author of the rules Emerging-Threats Rules Work In Progress Some changes are needed
#4988 opened Aug 28, 2024 by zenzue Draft
@nasbench
4
Add Rule: proc_creation_win_renamed_ssh.yml Author Input Required changes the require information from original author of the rules Rules Windows Pull request add/update windows related rules
#4971 opened Aug 15, 2024 by omaramin17 Draft
@nasbench
3
Winscp rule from Akira Ransomware report Rules Windows Pull request add/update windows related rules Work In Progress Some changes are needed
#4939 opened Jul 30, 2024 by frack113 Loading…
@nasbench
1
Add iis configuration rules Maintenance Related to additions and update of the repository features Rules Windows Pull request add/update windows related rules
#4935 opened Jul 27, 2024 by frack113 Loading…
@nasbench
New Rules Rules Windows Pull request add/update windows related rules Work In Progress Some changes are needed
#4913 opened Jul 12, 2024 by skaynum Loading…
@nasbench
Regasm Without CommandLine Rules Windows Pull request add/update windows related rules Work In Progress Some changes are needed
#4901 opened Jul 5, 2024 by frack113 Loading…
@nasbench
Unconstrained delegation Rules Windows Pull request add/update windows related rules Work In Progress Some changes are needed
#4886 opened Jun 23, 2024 by frack113 Loading…
@nasbench
XXD Command Line Obfuscation on Linux & Compiler Execution Within Kubernetes Containers & Three Others Linux Pull request add/update linux related rules Rules Work In Progress Some changes are needed
#4884 opened Jun 21, 2024 by signalblur Loading…
@nasbench
1
Add deprecated csv script Maintenance Related to additions and update of the repository features Rules Work In Progress Some changes are needed
#4858 opened May 17, 2024 by frack113 Loading…
@nasbench
Sigma tactics organizer Maintenance Related to additions and update of the repository features Work In Progress Some changes are needed
#4625 opened Dec 12, 2023 by dan21san Loading…
@phantinuss
2
New rules suggested for AD Container WRITE_DAC & WRITE_OWNER detection + DNS Server DLL injection Rules Windows Pull request add/update windows related rules Work In Progress Some changes are needed
#4606 opened Nov 30, 2023 by woundride Loading…
@nasbench
2
Add LDAP firewall application rules Rules Work In Progress Some changes are needed
#4528 opened Oct 30, 2023 by dekelpaz Loading…
@nasbench
6
ProTip! Filter pull requests by the default branch with base:master.