Skip to content

Pull requests: SigmaHQ/sigma

New pull request New
42 Open 4,366 Closed
42 Open 4,366 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Regex improvement on Powershell rules 2nd Review Needed PR need a second approval Rules Windows Pull request add/update windows related rules
#5145 opened Dec 27, 2024 by djlukic Loading…
4
Create proc_creation_win_remote_access_tools_anydesk_set_password_via_cli.yml Rules Windows Pull request add/update windows related rules
#5143 opened Dec 25, 2024 by DanielKoifman Loading…
Privilege Escalation via CVE-2024-35250 Author Input Required changes the require information from original author of the rules Emerging-Threats Rules Work In Progress Some changes are needed
#5136 opened Dec 20, 2024 by Eyezuhk Loading…
4
Reg.exe Detections added Rules Windows Pull request add/update windows related rules
#5135 opened Dec 19, 2024 by gbL2k Loading…
1
Fix Linux Buffer Overflow Attempts detection to correctly use regexes Additional Data Needed Linux Pull request add/update linux related rules Rules
#5134 opened Dec 18, 2024 by kelnage Loading…
3
Lnx auditd user discovery Linux Pull request add/update linux related rules Rules
#5129 opened Dec 13, 2024 by CheraghiMilad Loading…
Proc creation lnx webshell detection Author Input Required changes the require information from original author of the rules Linux Pull request add/update linux related rules Rules
#5128 opened Dec 13, 2024 by CheraghiMilad Loading…
2
Some paths added Author Input Required changes the require information from original author of the rules Linux Pull request add/update linux related rules Rules
#5120 opened Dec 10, 2024 by CheraghiMilad Loading…
2
Some Images and one technique Added Author Input Required changes the require information from original author of the rules Linux Pull request add/update linux related rules Rules
#5118 opened Dec 10, 2024 by CheraghiMilad Loading…
2
Add rule for insert or remove rootkit Author Input Required changes the require information from original author of the rules Linux Pull request add/update linux related rules Rules Work In Progress Some changes are needed
#5114 opened Dec 8, 2024 by CheraghiMilad Loading…
9
Add rule for device driver discovery Author Input Required changes the require information from original author of the rules Linux Pull request add/update linux related rules Rules Work In Progress Some changes are needed
#5113 opened Dec 8, 2024 by CheraghiMilad Loading…
2
Add rule for detect browser information discovery Author Input Required changes the require information from original author of the rules Linux Pull request add/update linux related rules Rules
#5112 opened Dec 8, 2024 by CheraghiMilad Loading…
7
Test EDRSilencer Rules Windows Pull request add/update windows related rules
#5111 opened Dec 7, 2024 by frack113 Loading…
Add a new technique with a service 2nd Review Needed PR need a second approval Linux Pull request add/update linux related rules Rules
#5098 opened Nov 30, 2024 by CheraghiMilad Loading…
3
Proc creation lnx exfiltration data via sftp protocol (winscp tool) Linux Pull request add/update linux related rules Rules Work In Progress Some changes are needed
#5096 opened Nov 29, 2024 by CheraghiMilad Loading…
3
add rule for impair system power settings 2nd Review Needed PR need a second approval Linux Pull request add/update linux related rules Rules
#5090 opened Nov 24, 2024 by CheraghiMilad Loading…
3
Expand ESXi Detections with ESXCli & VIM-CMD Detections 2nd Review Needed PR need a second approval Linux Pull request add/update linux related rules Rules
#5087 opened Nov 23, 2024 by AlbinoGazelle Loading…
3
Update proc_creation_win_findstr_security_keyword_lookup.yml Rules Windows Pull request add/update windows related rules Work In Progress Some changes are needed
#5085 opened Nov 20, 2024 by MalGamy12 Loading…
Detects the immediate execution of Python web servers (e.g., http.server) via the command line interface (CLI) Linux Pull request add/update linux related rules Rules Work In Progress Some changes are needed
#5079 opened Nov 13, 2024 by mlakri Loading…
Create Suspicious_Access_Attempt_to_the_cert Windows_Share_Possible_C… Rules Windows Pull request add/update windows related rules Work In Progress Some changes are needed
#5073 opened Nov 7, 2024 by NinnessOtu Loading…
3
RightToLeft Obfuscation - PowerShell Author Input Required changes the require information from original author of the rules Rules Windows Pull request add/update windows related rules Work In Progress Some changes are needed
#5072 opened Nov 6, 2024 by FilipPwn Draft
2
This is a proposal for SUID Enumeration Using Find Author Input Required changes the require information from original author of the rules Linux Pull request add/update linux related rules Rules Work In Progress Some changes are needed
#5071 opened Nov 4, 2024 by mlakri Draft
3
Create microsoft365_teams_guest_rmm_deployment.yml Author Input Required changes the require information from original author of the rules Rules Work In Progress Some changes are needed
#5066 opened Nov 1, 2024 by prashanthpulisetti Loading…
12
Converted Auditd rules Author Input Required changes the require information from original author of the rules Linux Pull request add/update linux related rules Rules
#5059 opened Oct 22, 2024 by defensivedepth Loading…
3
Create proc_creation_win_reg_add_AutoAdminLogon_key.yml Rules Windows Pull request add/update windows related rules Work In Progress Some changes are needed
#5053 opened Oct 16, 2024 by Mahir-Ali-khan Loading…
2
ProTip! Type g i on any issue or pull request to go back to the issue listing page.