SOC Prime's Projects
Cloud-native SIEM for intelligent security analytics for your entire enterprise.
OpenCTI connectors
pySigma Elasticsearch backend
pySigma Splunk backend
Generic Signature Format for SIEM Systems
A Splunk App containing Sigma detection rules, which can be updated from a Git repository.
SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)
SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack, and view Saved Searches configured by teammates.
List of sigma for a variety of threats for multiple log sources.
A browser extension for threat hunting that provides one UI for different SIEMs/EDRs and simplifies investigation