Skip to content

Issues: SigmaHQ/sigma

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

8 Open 575 Closed
8 Open 575 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

DNS Exfiltration rule Work In Progress Some changes are needed
#4889 opened Jun 25, 2024 by pramodpabbati
@nasbench
2
False Detections with Invoke-Obfuscation and Null Bytes False-Positive Issue reporting a false positive with one of the rules Work In Progress Some changes are needed
#4875 opened Jun 9, 2024 by KDot227
@nasbench
2
Update of Rare Service Install Detection Rule to use correlation syntax Work In Progress Some changes are needed
#4854 opened May 14, 2024 by Mat0vu
@nasbench
4
Detects Backdoor Kapeka Via Registry Key Work In Progress Some changes are needed
#4835 opened Apr 24, 2024 by cY83rR0H1t
@nasbench
Suspicious Process DNS Query Known Abuse Web Services
#4748 opened Mar 1, 2024 by cY83rR0H1t
@nasbench
Based on suspicious regedit changes sigma rules Work In Progress Some changes are needed
#4542 opened Nov 4, 2023 by HydraDragonAntivirus
@nasbench
3
Re-Work Rules / TODO False-Positive Issue reporting a false positive with one of the rules Rules Work In Progress Some changes are needed
#4430 opened Sep 7, 2023 by nasbench
@nasbench
Detect PowerShell w/o PowerShell Execution via RunDLL32 and various other methods Work In Progress Some changes are needed
#4197 opened Apr 25, 2023 by JulianDroste
@nasbench
3
ProTip! What’s not been updated in a month: updated:<2024-05-27.