A vendor-agnostic alternative to proprietary SIEM detection rules. It uses a YAML-based format to describe log events for conversion into various search queries.
Tech Stack
PythonSecurity & Passwords
Why sigma?
• Standardized rule format
• Massive community repository
• Platform independent
Limitations
• Requires conversion tools
• Learning curve for YAML
• Log source mapping needed
3/5/2026
Last Update
2,557
Forks
97
Issues
Other
License
Financial Leak Detected
Stop the "SaaS Tax"
Your team could be burning cash. Switching to sigma instantly boosts your runway.
