dscryber
October 2, 2021, 4:46pm
1
Open Community members, can you answer this challenge? Post your response here and on Twitter, please.
Kartone (@Kartone ) Tweeted:@graylog2 could you please suggest a good documentation or tutorial on how to use #sigma rules? I’ve been struggling for many months. Thanks!
Has nobody used sigma rules to improve detections with Graylog?
gsmith
October 8, 2021, 10:50pm
4
Hello && Welcome
I personal have not used sigma rules yet but I have found these posts.
SigmaHQ:master ← DefenceLogic:master
opened 02:56PM - 17 May 18 UTC
I have made a first pass at adding support for Graylog seaches in backends.py
…
I added some comments above new class in backends.py
Hello,
Context:
Windows servers send logs to Graylog (Winlogbeat, Sysmon…)
My boss want I use Sigma, but for yet, I don’t understand how to use it.
I have read the documentation…
So, I installed Python3 and do “pip3 install sigmatools”
I downloaded “sigma-master”, so I have lot of yml files.
But what are the manipulations to do on Graylog.
Thank you.
Hope that helps
system
October 22, 2021, 10:50pm
5
This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.
