Metadata-Version: 2.0
Name: sigmatools
Version: 0.13
Summary: Tools for the Generic Signature Format for SIEM Systems
Home-page: https://github.com/Neo23x0/sigma
Author: Sigma Project
Author-email: thomas@patzke.org
License: LGPLv3
Keywords: security monitoring siem logging signatures elasticsearch splunk ids sysmon
Platform: UNKNOWN
Classifier: Development Status :: 4 - Beta
Classifier: Intended Audience :: Developers
Classifier: Intended Audience :: Information Technology
Classifier: Intended Audience :: System Administrators
Classifier: Topic :: Security
Classifier: Topic :: Internet :: Log Analysis
Classifier: License :: OSI Approved :: GNU Lesser General Public License v3 (LGPLv3)
Classifier: Programming Language :: Python :: 3.6
Classifier: Programming Language :: Python :: 3.7
Classifier: Environment :: Console
Requires-Python: ~=3.6
Description-Content-Type: text/markdown
Provides-Extra: test
Requires-Dist: PyYAML
Requires-Dist: pymisp
Provides-Extra: test
Requires-Dist: coverage; extra == 'test'
Requires-Dist: yamllint; extra == 'test'

This package contains libraries for processing of [Sigma rules](https://github.com/Neo23x0/sigma) and the following
command line tools:

* *sigmac*: converter between Sigma rules and SIEM queries:
    * Elasticsearch query strings
    * Kibana JSON with searches
    * Splunk SPL queries
    * Elasticsearch X-Pack Watcher
    * Logpoint queries
* *merge_sigma*: Merge Sigma collections into simple Sigma rules.
* *sigma2misp*: Import Sigma rules to MISP events.


