Sigma Rules

This documentation page describes the parsing of Sigma rules and working with Sigma objects resulting from parsed rules.

Parsing

Programatic Construction

Rule Collections

Rule Object Model

SigmaRule

SigmaLogSource

SigmaDetections

SigmaDetection

SigmaDetectionItem

SigmaRuleTag

SigmaLevel

SigmaStatus

Sigma Data Types

SigmaString

SigmaNumber

SigmaBool

SigmaNull

SigmaRegularExpression

SigmaCIDRExpression

SigmaCompareExpression

SigmaQueryExpression