Merge pull request #32 from jkamdjou/josh.sublime_detection

Add Sublime / MQL detection rules
2024-10-01 01:25:57 -04:00 · 2023-07-26 22:44:15 +02:00 · 2023-07-26 22:44:15 +02:00 · 39aad4f02a
commit 39aad4f02a
parent 6c826d3647 f5e0c47147
2 changed files with 2 additions and 0 deletions
--- a/README.html
+++ b/README.html
@ -146,6 +146,7 @@
 <li><a href="https://github.com/InQuest/awesome-yara#rules">Awesome YARA Rules</a></li>
 <li><a href="https://github.com/chronicle/detection-rules">Chronicle Detection Rules</a> - Collection of YARA-L 2.0 sample rules for the Chronicle Detection API.</li>
 <li><a href="https://github.com/GoogleCloudPlatform/security-analytics">GCP Security Analytics</a> - Community Security Analytics provides a set of community-driven audit &amp; threat queries for Google Cloud.</li>
+<li><a href="https://github.com/sublime-security/sublime-rules">Sublime Detection Rules</a> - Email attack detection, response, and hunting rules.</li>
 </ul>
 <h2 id="dataset">Dataset</h2>
 <ul>
--- a/README.md
+++ b/README.md
@ -141,6 +141,7 @@
 - [Chronicle Detection Rules](https://github.com/chronicle/detection-rules) - Collection of YARA-L 2.0 sample rules for the Chronicle Detection API.
 - [GCP Security Analytics](https://github.com/GoogleCloudPlatform/security-analytics) - Community Security Analytics provides a set of community-driven audit & threat queries for Google Cloud.
 - [ThreatHunter-Playbook](https://github.com/OTRF/ThreatHunter-Playbook) - A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
+- [Sublime Detection Rules](https://github.com/sublime-security/sublime-rules) - Email attack detection, response, and hunting rules.

 ## Dataset