DetectPack Forge - Turn your words into a rule maker.

by•6mo ago

Turn plain-English behaviors or small log samples into production-ready detection packs — Sigma, KQL (Sentinel), and SPL (Splunk) — with tests and a short response playbook, all mapped to MITRE ATT&CK.

Replies

Best

Maker

📌

DetectPack Forge is a helper for people learning or working with SIEMs. You describe a behavior (e.g., “many failed logons then a success”) or paste a few log lines, and the app generates: Sigma (vendor-neutral rule YAML) KQL (Microsoft Sentinel) SPL (Splunk) Tests (positive/negative examples) Playbook (concise incident-response checklist) MITRE ATT&CK technique tags What's different about this product is while it is helpful for regular new users, it is also very helpful for professionals as well, to generate rules and implement them.

Report

6mo ago