# securityonion-resources

**Repository Path**: minishiguang/securityonion-resources

## Basic Information

- **Project Name**: securityonion-resources
- **Description**: No description available
- **Primary Language**: Unknown
- **License**: Not specified
- **Default Branch**: main
- **Homepage**: None
- **GVP Project**: No

## Statistics

- **Stars**: 0
- **Forks**: 0
- **Created**: 2026-02-28
- **Last Updated**: 2026-02-28

## Categories & Tags

**Categories**: Uncategorized

**Tags**: None

## README

# Security Onion - Resources

This repository contains the following resources:


## Security Onion specific Sigma Rules
  - Location: `main` branch, sigma folder
  - License: Elastic-2.0 -- https://securityonionsolutions.com/license
    
This Sigma ruleset is maintained by Security Onion and is loaded by default into the Security Onion Detections module.

  
## Event Filters
  - Location: `main` branch, event_filters folder
  - License: MIT
    
Generic event filters for process_creation, dns_query, file_create and more. Used by Security Onion to generate event filters for Elastic Defend events.

Originally sourced from https://github.com/Neo23x0/sysmon-config and https://github.com/olafhartong/sysmon-modular


## AI-Generated Detection Summaries
  - Location: `generated-summaries-published` branch, detections-ai folder
  - License: See LICENSE file in the root of the repo

Summaries created by an LLM for Suricata, Sigma and YARA rules. Used by Security Onion in the Detections module.