sigma-cli
« Back to VersTracker
Description:
CLI based on pySigma
Type: Formula  |  Latest Version: 2.0.0@0  |  Tracked Since: Dec 10, 2025
Links: Homepage  |  @SigmaHQ  |  formulae.brew.sh
Category: Security
Tags: security sigma threat-detection siem devsecops
Install: brew install sigma-cli
About:
sigma-cli is the official command-line interface for the pySigma library, enabling security analysts to convert Sigma detection rules into various target formats. It provides a unified workflow for translating threat detection logic into vendor-specific queries for SIEMs like Splunk, Elasticsearch, and Microsoft Sentinel. This tool streamlines threat hunting and detection engineering by bridging the gap between open-source Sigma rules and proprietary security platforms.
Key Features:
  • Converts Sigma rules into multiple query languages (SPL, KQL, etc.)
  • Supports a wide range of backends for commercial and open-source SIEMs
  • Extensible via plugins for pipelines, backends, and outputs
  • Integrates with CI/CD pipelines for automated rule management
Use Cases:
  • Converting Sigma rules for deployment into a specific SIEM environment
  • Validating and testing Sigma rule conversions during development
  • Automating detection rule updates in a DevSecOps workflow
Alternatives:
  • sigmac – The legacy, standalone converter; sigma-cli is the modern, plugin-based successor built on pySigma.
Version History
Detected Version Rev Change Commit
Dec 10, 2025 9:33pm 0 VERSION_BUMP 6a0abf25
Oct 12, 2025 10:25am 2 VERSION_BUMP 7aebc853
Sep 15, 2025 9:51am 2 VERSION_BUMP de81cf9e
Sep 14, 2024 5:04am 0 VERSION_BUMP e9c39ecb
« Back to VersTracker  |  Browse Packages  |  About