GOVERNANCE ยท RISK ยท COMPLIANCECOMPLIANCE TEMPLATESGRCadiaGRCadia
Products
๐Ÿ›ก๏ธ Cybersecurity Tools๐Ÿ“‹GRC & Compliance๐Ÿ”’Privacy & Legal๐ŸŽ“Training & Awareness
Browse All Products โ†’
SubscriptionsAboutBlog
ENFRES
Sign InRegister
Home/Products/Cybersecurity Tools/Detection & Threat Hunting

Detection & Threat Hunting

Splunk SPL, KQL, Elastic, and Sigma detection rules for threat hunting โ€” 35 products

Language

ENFRES

Categories

๐Ÿ›ก๏ธCybersecurity Tools115
Detection & Threat Hunting35Scripts & Automation32Incident Response16Hardening & Baselines12Security Architecture & Operations18NSA CSfC Continuous Monitoring2
๐Ÿ“‹GRC & Compliance90
๐Ÿ”’Privacy & Legal106
๐ŸŽ“Training & Awareness4

Frameworks

CCPACISCMMCDORAFedRAMPGDPRGLBAISO-20000ISO-22301ISO-27001ISO-9001ITILNIS2NIST-800-171NIST-800-53NIST-CSF
Clear all filters
7
Files
123+
Formulas
NIST-CSFCISNIST-800-53+2

Sigma Rules โ€” Full MITRE ATT&CK Coverage

Your SIEM needs better rules. Here are the ones that actually catch things.

$349.00
PCI-DSS
SOX
7
Files
docx
Format
NIST-CSFCISNIST-800-53+2

Sigma Rules Pack โ€” Cloud Attacks

Deploy real detections in hours, not weeks. Battle-tested by a government CISO.

$149.00
6
Files
docx
Format
NIST-CSFCISNIST-800-53+2

Sigma Rules Pack โ€” Web Application Attacks

Deploy real detections in hours, not weeks. Battle-tested by a government CISO.

$149.00
6
Files
docx
Format
NIST-CSFCISNIST-800-53+2

Sigma Rules Pack โ€” Linux Threats

Stop tuning default rules. Start deploying rules that were built for production.

$349.00
6
Files
docx
Format
NIST-CSFCISNIST-800-53+2

Sigma Rules Pack โ€” Windows Threats

Deploy real detections in hours, not weeks. Battle-tested by a government CISO.

$349.00
11+
Files
docx
Format
NIST-CSFCISNIST-800-53+2

Elastic โ€” Threat Intelligence Integration Pack

Your SIEM needs better rules. Here are the ones that actually catch things.

$149.00
13+
Files
docx
Format
NIST-CSFCISNIST-800-53+3

Elastic โ€” Cloud Monitoring Rules AWS GCP

Deploy real detections in hours, not weeks. Battle-tested by a government CISO.

$349.00
7
Files
118+
Formulas
NIST-CSFCISNIST-800-53+2

Elastic โ€” MITRE ATT&CK Rule Pack

Your SIEM needs better rules. Here are the ones that actually catch things.

$149.00
7
Files
docx
Format
NIST-CSFCISNIST-800-53+2

Elastic โ€” Endpoint Threat Detection Rules

Stop tuning default rules. Start deploying rules that were built for production.

$349.00
7
Files
docx
Format
NIST-CSFCISNIST-800-53+2

Elastic โ€” Active Directory Threat Detection

Stop tuning default rules. Start deploying rules that were built for production.

$349.00
7
Files
docx
Format
NIST-CSFCISNIST-800-53+2

Elastic SIEM Detection Rules Pack

Deploy real detections in hours, not weeks. Battle-tested by a government CISO.

$149.00
6
Files
docx
Format
NIST-CSFCISNIST-800-53+3

KQL โ€” Network and Firewall Anomaly Detection

Your SIEM needs better rules. Here are the ones that actually catch things.

$149.00
6
Files
docx
Format
NIST-CSFCISNIST-800-53+2

KQL โ€” Windows Security Event Detection

Stop tuning default rules. Start deploying rules that were built for production.

$149.00
7
Files
docx
Format
NIST-CSFCISNIST-800-53+2

KQL โ€” Sentinel Workbook Templates

Stop tuning default rules. Start deploying rules that were built for production.

$349.00
7
Files
123+
Formulas
NIST-CSFCISNIST-800-53+2

KQL โ€” MITRE ATT&CK Coverage Pack

Your SIEM needs better rules. Here are the ones that actually catch things.

$349.00
6
Files
docx
Format
NIST-CSFCISNIST-800-53+2

KQL โ€” Cloud Resource Abuse Detection

Deploy real detections in hours, not weeks. Battle-tested by a government CISO.

$149.00
6
Files
docx
Format
NIST-CSFCISNIST-800-53+2

KQL โ€” Office 365 Threat Detection

Deploy real detections in hours, not weeks. Battle-tested by a government CISO.

$149.00
6
Files
docx
Format
NIST-CSFCISNIST-800-53+2

KQL โ€” Insider Threat Detection Pack

Deploy real detections in hours, not weeks. Battle-tested by a government CISO.

$349.00
6
Files
docx
Format
NIST-CSFCISNIST-800-53+2

KQL โ€” Ransomware Detection and Response

Your SIEM needs better rules. Here are the ones that actually catch things.

$349.00
6
Files
docx
Format
NIST-CSFCISNIST-800-53+2

KQL โ€” Microsoft Defender Threat Hunting

Deploy real detections in hours, not weeks. Battle-tested by a government CISO.

$349.00
4
Files
docx
Format
NIST-CSFCISNIST-800-53+2

KQL โ€” Azure AD Entra ID Attack Detection

Deploy real detections in hours, not weeks. Battle-tested by a government CISO.

$349.00
4
Files
docx
Format
NIST-CSFCISNIST-800-53+2

KQL Detection Pack โ€” Microsoft Sentinel

Deploy real detections in hours, not weeks. Battle-tested by a government CISO.

$149.00
5
Files
docx
Format
NIST-CSFCISNIST-800-53+2

Splunk SPL โ€” Compliance Reporting Queries

Stop tuning default rules. Start deploying rules that were built for production.

$149.00
5
Files
docx
Format
NIST-CSFCISNIST-800-53+2

Splunk SPL โ€” Web Application Attack Detection

Stop tuning default rules. Start deploying rules that were built for production.

$149.00
5
Files
docx
Format
NIST-CSFCISNIST-800-53+3

Splunk SPL โ€” Privileged Account Monitoring

Stop tuning default rules. Start deploying rules that were built for production.

$149.00
5
Files
123+
Formulas
NIST-CSFCISNIST-800-53+2

Splunk SPL โ€” MITRE ATT&CK Coverage Pack

Stop tuning default rules. Start deploying rules that were built for production.

$349.00
7
Files
docx
Format
NIST-CSFCISNIST-800-53+2

Splunk SPL โ€” Phishing and Email Threat Queries

Stop tuning default rules. Start deploying rules that were built for production.

$149.00
7
Files
docx
Format
NIST-CSFCISNIST-800-53+2

Splunk SPL โ€” Endpoint Detection Queries

Your SIEM needs better rules. Here are the ones that actually catch things.

$349.00
7
Files
docx
Format
NIST-CSFCISNIST-800-53+3

Splunk SPL โ€” Network Anomaly Detection

Your SIEM needs better rules. Here are the ones that actually catch things.

$349.00
7
Files
docx
Format
NIST-CSFCISNIST-800-53+2

Splunk SPL โ€” Cloud Azure Threat Detection

Your SIEM needs better rules. Here are the ones that actually catch things.

$349.00
4
Files
docx
Format
NIST-CSFCISNIST-800-53+2

Splunk SPL โ€” Cloud AWS Threat Detection

Deploy real detections in hours, not weeks. Battle-tested by a government CISO.

$349.00
4
Files
docx
Format
NIST-CSFCISNIST-800-53+2

Splunk SPL โ€” Insider Threat Detection Pack

Stop tuning default rules. Start deploying rules that were built for production.

$349.00
4
Files
docx
Format
NIST-CSFCISNIST-800-53+2

Splunk SPL โ€” Ransomware Detection Queries

Your SIEM needs better rules. Here are the ones that actually catch things.

$349.00
4
Files
docx
Format
NIST-CSFCISNIST-800-53+2

Splunk SPL โ€” Active Directory Attack Detection

Your SIEM needs better rules. Here are the ones that actually catch things.

$349.00
6
Files
docx
Format
NIST-CSFCISNIST-800-53+2

Splunk SPL Detection Pack โ€” Threat Hunting

Your SIEM needs better rules. Here are the ones that actually catch things.

$149.00