Nasreddine Bencherchali's repositories
EVTX-ETW-Resources
Event Tracing For Windows (ETW) Resources
Misc-Research
A collection of tools, scripts and personal research
DefenderYara
Extracted Yara rules from Windows Defender mpavbase and mpasbase
sysmon-config
Sysmon configuration file template with default high-quality event tracing
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
LOLDrivers
Living Off The Land Drivers
sigmahq.github.io
Official Website Of The Sigma Project
InsightEngineering
Hardcore Debugging
license-list-XML
This is the repository for the master files that comprise the SPDX License List
pySigma
Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)
pySigma-backend-elasticsearch
pySigma Elasticsearch backend
pySigma-backend-QRadar-AQL
QRadar AQL backend for converting Sigma rules to QRadar AQL queries
schemastore
A collection of JSON schema files including full API
sensor-mappings-to-attack
Sensor Mappings to ATT&CK is a collection of resources to assist cyber defenders with understanding which sensors and events can help detect real-world adversary behaviors in their environments.
sigconverter.io
A opensource sigma convertion tool built using pysigma
sigma-cli
The Sigma command line interface based on pySigma
sigma-specification
Sigma rule specification
signature-base
Signature base for my scanner tools
terminal
The new Windows Terminal and the original Windows console host, all in the same place!
ThreatHunting-Keywords-sigma-rules
Sigma detection rules for hunting with the threathunting-keywords project
windows-itpro-docs
This repository is used for Windows client for IT Pro content on Microsoft Learn.
WSL
Issues found on WSL