Skip to content

Actions: SigmaHQ/sigma

Actions

Validate Sigma rules

Actions

Loading...
Loading

Show workflow options

Create status badge

Loading
sigma-validation.yml
1,531 workflow runs
1,531 workflow runs

Filter by Event

Filter by Status

Filter by Branch

Filter by Actor

Adding missing mitre attack tags for 8 rules. Validate Sigma rules #3194: Pull request #5380 opened by david-syk
April 22, 2025 11:07 21s david-syk:master
david-syk:master
April 22, 2025 11:07 21s
feat: JavaScript Execution Via NodeJS Validate Sigma rules #3193: Pull request #5379 synchronize by swachchhanda000
April 22, 2025 08:37 21s swachchhanda000:node_js
swachchhanda000:node_js
April 22, 2025 08:37 21s
feat: JavaScript Execution Via NodeJS Validate Sigma rules #3192: Pull request #5379 opened by swachchhanda000
April 22, 2025 08:32 23s swachchhanda000:node_js
swachchhanda000:node_js
April 22, 2025 08:32 23s
fix: FP related to Potentially Suspicious WDAC Policy File Creation Validate Sigma rules #3191: Pull request #5378 opened by X-Junior
April 21, 2025 10:40 18s X-Junior:FP-WDAC-Policy
X-Junior:FP-WDAC-Policy
April 21, 2025 10:40 18s
Clear windows security event logs Validate Sigma rules #3190: Pull request #5377 opened by woundride
April 20, 2025 22:07 Action required woundride:clear-windows-security-event-logs
woundride:clear-windows-security-event-logs
April 20, 2025 22:07 Action required
Suspicious ntlm logon failure Validate Sigma rules #3189: Pull request #5376 synchronize by woundride
April 20, 2025 22:03 Action required woundride:suspicious-ntlm-logon-failure
woundride:suspicious-ntlm-logon-failure
April 20, 2025 22:03 Action required
Suspicious ntlm logon failure Validate Sigma rules #3188: Pull request #5376 opened by woundride
April 20, 2025 22:02 Action required woundride:suspicious-ntlm-logon-failure
woundride:suspicious-ntlm-logon-failure
April 20, 2025 22:02 Action required
Suspicious NTLM Logon Success Validate Sigma rules #3187: Pull request #5375 synchronize by woundride
April 20, 2025 21:59 Action required woundride:master
woundride:master
April 20, 2025 21:59 Action required
Suspicious NTLM Logon Success Validate Sigma rules #3186: Pull request #5375 synchronize by woundride
April 20, 2025 21:31 Action required woundride:master
woundride:master
April 20, 2025 21:31 Action required
Suspicious NTLM Logon Success Validate Sigma rules #3185: Pull request #5375 opened by woundride
April 20, 2025 21:29 Action required woundride:master
woundride:master
April 20, 2025 21:29 Action required
Discovery via registry queries detection Validate Sigma rules #3179: Pull request #5243 synchronize by xlazarg
April 18, 2025 20:37 -1s xlazarg:master
xlazarg:master
April 18, 2025 20:37 -1s
Merge PR #5261 from @swachchhanda000 - Add `Suspicious CrushFTP Child… Validate Sigma rules #3177: Commit 85fd595 pushed by nasbench
April 17, 2025 19:43 17s master
master
April 17, 2025 19:43 17s
Merge PR #5263 from @RG9n - Add `Suspicious Process Spawned by Centre… Validate Sigma rules #3176: Commit 3d17247 pushed by nasbench
April 17, 2025 19:42 19s master
master
April 17, 2025 19:42 19s
Merge PR #5265 form @tsale - Update `Obfuscated PowerShell OneLiner E… Validate Sigma rules #3175: Commit 07c285c pushed by nasbench
April 17, 2025 19:42 22s master
master
April 17, 2025 19:42 22s
feat: Suspicious CrushFTP Child Process Validate Sigma rules #3174: Pull request #5261 synchronize by nasbench
April 17, 2025 09:16 18s swachchhanda000:crushftp
swachchhanda000:crushftp
April 17, 2025 09:16 18s
Introduce versions of rules for K8s audit log format Validate Sigma rules #3173: Pull request #5259 reopened by kelnage
April 17, 2025 08:49 20s kelnage:kubernetes-audit-log-rules
kelnage:kubernetes-audit-log-rules
April 17, 2025 08:49 20s
feat: Suspicious CrushFTP Child Process Validate Sigma rules #3172: Pull request #5261 synchronize by swachchhanda000
April 17, 2025 04:05 18s swachchhanda000:crushftp
swachchhanda000:crushftp
April 17, 2025 04:05 18s
new: Suspicious Process Spawn by CentreStack Portal AppPool Validate Sigma rules #3171: Pull request #5263 synchronize by nasbench
April 16, 2025 23:06 17s RG9n:patch-1
RG9n:patch-1
April 16, 2025 23:06 17s
new: Suspicious Process Spawn by CentreStack Portal AppPool Validate Sigma rules #3170: Pull request #5263 synchronize by nasbench
April 16, 2025 23:06 19s RG9n:patch-1
RG9n:patch-1
April 16, 2025 23:06 19s
new: Suspicious Process Spawn by CentreStack Portal AppPool Validate Sigma rules #3169: Pull request #5263 synchronize by nasbench
April 16, 2025 23:05 20s RG9n:patch-1
RG9n:patch-1
April 16, 2025 23:05 20s
Merge PR #5228 from @swachchhanda000 - Update Eventlog clearing relat… Validate Sigma rules #3168: Commit 5d050fb pushed by nasbench
April 16, 2025 22:45 18s master
master
April 16, 2025 22:45 18s
Merge PR #5234 from @swachchhanda000 - Update `Potential Product Clas… Validate Sigma rules #3167: Commit ff4076f pushed by nasbench
April 16, 2025 22:44 20s master
master
April 16, 2025 22:44 20s
Merge PR #5239 from @swachchhanda000 - Update `Potential Browser Data… Validate Sigma rules #3166: Commit 75a1ff3 pushed by nasbench
April 16, 2025 22:43 18s master
master
April 16, 2025 22:43 18s
Merge PR #5240 from @swachchhanda000 - Add `Suspicious LNK Command-Li… Validate Sigma rules #3165: Commit 6143a22 pushed by nasbench
April 16, 2025 22:42 21s master
master
April 16, 2025 22:42 21s
Merge PR #5249 from @nasbench - Promote older rules status from `expe… Validate Sigma rules #3164: Commit 29ad6f9 pushed by nasbench
April 16, 2025 22:41 18s master
master
April 16, 2025 22:41 18s