• Home
  • Author
  • About
  • Referrals

Reboto

Reboto

a dumping ground for stuff I (possibly) find interesting...

@cyb3rops: Elastic~Sigma Rules

Admin / July 01, 2020

I see that @elastic startet to share their detection rules, which is great

We can already convert Sigma rules into their format (-t es-rule)

So, no need to learn a different format that has 97% of the fields & logic that a vendor-agnostic Sigma rule has.
We've got you covered. https://t.co/unSmpwHIIe pic.twitter.com/aGvSUZax5M

— Florian Roth (@cyb3rops) July 1, 2020
Share Share on Twitter Share on Facebook Share on LinkedIn

About Admin

Read Next

Next

CyBOK: an authoritative guide to the foundational knowledge underpinning cyber security

July 04, 2020
Previous

Getting Windows Defender Status from all Domain Joined Computers (Get-AntiMalwareStatus)

July 01, 2020

Latest Posts

  • Visual Studio max line lengths using a guideline

    November 21, 2022

  • Generating Markdown tables

    November 09, 2022

  • Setting up Visual Studio External Tools (Using Powershell to generate build numbers)

    November 09, 2022

Tags

SecurityDevelopmentAzureOffice365Windows 10CloudWindows ServerPowershellActive DirectoryHyper-VSQLOpenSourceMicrosoftBooksWindows 7ClimbingLinuxWindows 8Visual StudioEdgeDNSInTuneDevOpsWebStorageWSUSSourceTreeNetworkPlaystationSysAdminQubesOsSonyLearningPS5Internet ExplorerIEMarkdownhtmlToolsGhost.NETMarketingVMWAREWindows 8WIndows XPPhotographyKyoceraPrintersIT ManagementDriversMFANon-TechReferralGDPRGroup PolicyVirtualizationGITTrainingIOT
Twitter
  • twitter
  • google
  • linkedin
Reboto © 2025
Powered by Ghost. BlogInn theme by JustGoodThemes.
Back to the top