siem-rules

Here are 3 public repositories matching this topic...

sankyhack / Kubernetes-Detection-Engineering

This repo, focuses on detection engineering for Kubernetes Cluster. Sysdig Falco is used to create rules.

kubernetes cloud-native mitre detection-rules threat-detection runtime-security kubernetes-security detection-engineering falco-rules siem-rules

Updated Mar 1, 2026

move78ai / Genai-SIEM-Rules

Star

SIEM detection rules (Splunk, Sentinel, Elastic) to hunt Shadow AI, monitor proxy logs, and prevent LLM data exfiltration.

splunk sentinel threat-hunting siem elastic data-exfiltration ai-security llm-security shadow-ai siem-rules

Updated Feb 22, 2026

move78ai / EU-AI-ACT-SIEM-COMPLIANCE-DETECTIONS

Star

pen-source Splunk SIEM detection rules and SOAR playbooks mapped to the EU AI Act for monitoring AI security, data poisoning, and human oversight compliance.

splunk cybersecurity siem soc compliance-as-code ai-security threat-detection sigma-rules mitre-atlas cybersecurity-automation owasp-llm euaiact siem-rules genaisecurity

Updated Feb 22, 2026

Improve this page

Add a description, image, and links to the siem-rules topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the siem-rules topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly