Forum Discussion
SSingh
Jul 16, 2024Copper Contributor
Import yaml from Github to Sentinel
Does anyone know how to create Sentinel custom alerts for the IOCs from Github repos such as this one? https://github.com/magicsword-io/LOLDrivers/blob/main/detections/sigma/driver_load_win_mal_driv...
Clive_Watson
Jul 16, 2024Bronze Contributor
https://uncoder.io/ will allow you to paste the YAML file and convert to a Sentinel Rule or Query