Skip to content

Pull requests: SigmaHQ/sigma

New pull request New
58 Open 4,422 Closed
58 Open 4,422 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Fixed wrong date format and wrong keyword Ready to Merge Rules
#5227 opened Mar 7, 2025 by Gude5 Loading…
2
Lazagne rule update Rules Windows Pull request add/update windows related rules
#5225 opened Mar 6, 2025 by swachchhanda000 Loading…
Fixed more fps Ready to Merge Rules Windows Pull request add/update windows related rules
#5224 opened Mar 5, 2025 by swachchhanda000 Loading…
1
Fix false positives in "AWS Attached Malicious Lambda Layer" rule Ready to Merge Rules
#5223 opened Mar 5, 2025 by imall4n Loading…
1
fixed fps in some rules specifically remote thread creation related Author Input Required changes the require information from original author of the rules Rules Windows Pull request add/update windows related rules
#5222 opened Mar 4, 2025 by swachchhanda000 Loading…
7
microsoft_sql_dangerous_operations Author Input Required changes the require information from original author of the rules Rules Windows Pull request add/update windows related rules Work In Progress Some changes are needed
#5221 opened Mar 3, 2025 by dan21san Loading…
2
Analytic for Signal Desktop sensitive data access Rules Windows Pull request add/update windows related rules
#5220 opened Mar 3, 2025 by netgrain Loading…
Replace CommandLine with real command line arguments Rules Windows Pull request add/update windows related rules
#5219 opened Mar 3, 2025 by nikstuckenbrock Loading…
1
Adding rule for detecting recaptcha phish process executions 2nd Review Needed PR need a second approval Rules Windows Pull request add/update windows related rules
#5218 opened Mar 1, 2025 by montysecurity Loading…
6
Automatically update heatmap json when new rule is pushed to master. Author Input Required changes the require information from original author of the rules Maintenance Related to additions and update of the repository features Work In Progress Some changes are needed
#5213 opened Feb 26, 2025 by JrOrOneEquals1 Loading…
2
Updated to exclude false positives from common CLI searches like "fin… Author Input Required changes the require information from original author of the rules Rules Windows Pull request add/update windows related rules
#5209 opened Feb 24, 2025 by kagebunsher Loading…
3
Fixed fps and added coverage for ARM based windows dotnet paths Rules Windows Pull request add/update windows related rules Work In Progress Some changes are needed
#5208 opened Feb 24, 2025 by swachchhanda000 Loading…
8
First commit Rules Windows Pull request add/update windows related rules
#5205 opened Feb 23, 2025 by YousefNein Loading…
1
updated adfind related rules 2nd Review Needed PR need a second approval Rules Windows Pull request add/update windows related rules
#5203 opened Feb 23, 2025 by swachchhanda000 Loading…
5
Added new Fortinet Fortigate rules 2nd Review Needed PR need a second approval Additional Data Needed Rules
#5197 opened Feb 20, 2025 by inthecyber Loading…
6
Updated and Added rule related to Autorun Registry 2nd Review Needed PR need a second approval Rules Windows Pull request add/update windows related rules
#5196 opened Feb 17, 2025 by swachchhanda000 Loading…
2
Add detection rule for importing KMS key material, usable for AWS ran… Author Input Required changes the require information from original author of the rules Rules
#5193 opened Feb 12, 2025 by toopricey Loading…
2
Add rule: Suspicious Certutil Decoding (experimental) Rules Windows Pull request add/update windows related rules
#5188 opened Feb 7, 2025 by Peter-Daniel-hkr Loading…
1
Added new rules for Malware abusing grimresource and rtlo techniques 2nd Review Needed PR need a second approval Rules Windows Pull request add/update windows related rules
#5183 opened Feb 5, 2025 by swachchhanda000 Loading…
5
update Ssh proxy execution rule Rules Windows Pull request add/update windows related rules
#5181 opened Feb 5, 2025 by swachchhanda000 Loading…
Add proc_creation_win_parent_run_itself Author Input Required changes the require information from original author of the rules Rules Windows Pull request add/update windows related rules
#5180 opened Feb 4, 2025 by frack113 Loading…
1
Analytic for WDAC Policy abuse 2nd Review Needed PR need a second approval Rules Windows Pull request add/update windows related rules
#5175 opened Jan 30, 2025 by netgrain Loading…
5
Tamper firewall by Registry Rules Windows Pull request add/update windows related rules
#5172 opened Jan 26, 2025 by frack113 Loading…
Discovery via registry queries detection added 2nd Review Needed PR need a second approval Rules Windows Pull request add/update windows related rules
#5165 opened Jan 19, 2025 by xlazarg Loading…
4
Update proc_creation_win_reg_windows_defender_tamper.yml Author Input Required changes the require information from original author of the rules Rules Windows Pull request add/update windows related rules Work In Progress Some changes are needed
#5148 opened Dec 31, 2024 by MalGamy12 Draft
3
ProTip! Mix and match filters to narrow down what you’re looking for.