all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

SIGMA rules: The beginner’s guide and tutorial

Add to bookmarks
May 19, 2022, 1:59 p.m. | /u/Cultural_Budget6627

cybersecurity www.reddit.com

Here is a very complete SIGMA rules guide written by a threat hunter. The blog post covers:

* Reasons to use SIGMA
* The most critical SIGMA rule components (logsource & detection)
* SIGMA taxonomy
* SIGMA rules testing
* Tutorial on how to write your first rule
* Background, context and more

[https://socprime.com/blog/sigma-rules-the-beginners-guide/](https://socprime.com/blog/sigma-rules-the-beginners-guide/)

Do you use SIGMA?

cybersecurity guide rules sigma sigma rules tutorial

Visit resource

More from www.reddit.com / cybersecurity

2x Actively Exploited Cisco CVEs in Adaptive Security Compliance (ASA) & Firepower Threat Defense (FTD) 2 hours ago | www.reddit.com
actively exploited adaptive security asa cisco +15
Ring customers get $5.6 million in privacy breach settlement 4 hours ago | www.reddit.com
breach customers cybersecurity privacy +3
FTC bans non competes. F yeah. 6 hours ago | www.reddit.com
bans cybersecurity ftc non
Has anyone tried SentinelOne's Purple AI? What are your thoughts on it? 7 hours ago | www.reddit.com
cybersecurity purple purple ai sentinelone +1
Is experience more valuable than a degree ? 7 hours ago | www.reddit.com
analyst cybersecurity cybersecurity analyst experience +6
Suspected NK hackers infect AV service of Avast using MITM 8 hours ago | www.reddit.com
cybersecurity
Faking domains in google ads? 9 hours ago | www.reddit.com
case cybersecurity don found +13
Incident Response Guide and IRGuideBook 10 hours ago | www.reddit.com
application article artifact cybersecurity +11
Can you help me to understand the very different figures I see in Mandiant's "M-Trends … 12 hours ago | www.reddit.com
attacker breach can compromise +19

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Officer Hospital - Major Hospital Account - Full-Time - Healthcare Security

@ Allied Universal | Anaheim, CA, United States
View on infosec-jobs.com

Product Security Lead

@ Lely | Maassluis, Netherlands
View on infosec-jobs.com

Summer Associate, IT Information Security (Temporary)

@ Vir Biotechnology, Inc. | San Francisco, California, United States
View on infosec-jobs.com

Director, Governance, Risk and Compliance - Corporate

@ Ryan Specialty | Chicago, IL, US, 60606
View on infosec-jobs.com

Cybersecurity Governance, Risk, and Compliance Engineer

@ Emerson | Shakopee, MN, United States
View on infosec-jobs.com
View more jobs