Set of SIGMA rules (>320) mapped to MITRE ATT&CK tactic and techniques
Why do you think that https://github.com/aydnyldrm/Graylog_3.0_Content_Pack_Active_Directory_Auditing is a good alternative to SIGMA-detection-rules
Set of SIGMA rules (>320) mapped to MITRE ATT&CK tactic and techniques
Why do you think that https://github.com/aydnyldrm/Graylog_3.0_Content_Pack_Active_Directory_Auditing is a good alternative to SIGMA-detection-rules