SOC Prime's repositories
soc_workflow_app_ce
SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack, and view Saved Searches configured by teammates.
the-prime-hunt
A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation
socprime_sigma
List of sigma for a variety of threats for multiple log sources.
Sigma-Hunting-App
A Splunk App containing Sigma detection rules, which can be updated from a Git repository.
Azure-Sentinel
Cloud-native SIEM for intelligent security analytics for your entire enterprise.
connectors
OpenCTI connectors
Language:PythonApache-2.0000
pySigma-backend-elasticsearch
pySigma Elasticsearch backend
Language:PythonLGPL-3.0000
pySigma-backend-splunk
pySigma Splunk backend
Language:PythonLGPL-2.1000