Skip to content
/ siem_detection_rules Public

Repo for my detection rules in system relative formatting

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Khadinxc/siem_detection_rules

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

76 Commits
.github/workflows
.github/workflows
 
 
development
development
 
 
elastic_rules
elastic_rules
 
 
metrics
metrics
 
 
splunk_rules
splunk_rules
 
 
templates
templates
 
 
README.md
README.md
 
 

Repository files navigation

SIEM Detection Rules

all detection rules I've created stored in a singular location for my own reference and possibly others if they so choose too.

Future Plans

Title Goal
Conversion to Splunk The plan is to convert this architecture and integrate it into a Splunk instance.
Integration into Red teaming Incorporate this lab into other TCM academy courses to detect on the Pen-testing and such that I'm learning about utilizing this knowledge to pass OSCP.
Continued Research Continue my research into emerging threats, new exploits, new actors, and how to detect them.

Metrics

Updating Detections

TOML/MITRE Validation

About

Repo for my detection rules in system relative formatting

Topics

security threat-hunting threat-detection detection-engineering

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages