A set of free detection rules shared with the community without any warranties.
Detection rules contianed in this repository include:
- SIGMA
- SNORT
- SURICATA
- YARA
Rules in each cateogry are sorted based on the adversary they relate to e.g.
yara
├── confucius
│ └── Intrusion_Attempt_Against_GoP
│ └──APT_IN_Confucius_Loader.yar
└── lazarus
└── Redbanc_Intrusion
├── APT_KP_PowerRatankbaA_Downloader.yar
└── APT_KP_PowerRatankbaB_Downloader.yar