From d21343fb0255a9d54c9edf95e5dac8266b1b9d6b Mon Sep 17 00:00:00 2001
From: Kaiber <89855993+Khadinxc@users.noreply.github.com>
Date: Mon, 17 Nov 2025 21:50:57 +1100
Subject: [PATCH 1/2] Update README with Sigma2KQL and TerraSigma links

Added Sigma2KQL and TerraSigma repositories to the README.
---
 README.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/README.md b/README.md
index 0e33ec4..e61c5d1 100644
--- a/README.md
+++ b/README.md
@@ -99,6 +99,8 @@ Thanks to all [contributors](https://github.com/sbilly/awesome-security/graphs/c
 - [Falco](https://falco.org/) - The cloud-native runtime security project and de facto Kubernetes threat detection engine now part of the CNCF.
 - [VAST](https://github.com/tenzir/vast) - Open source security data pipeline engine for structured event data, supporting high-volume telemetry ingestion, compaction, and retrieval; purpose-built for security content execution, guided threat hunting, and large-scale investigation.
 - [Substation](https://github.com/brexhq/substation) - Substation is a cloud native data pipeline and transformation toolkit written in Go.
+- [Sigma2KQL](https://github.com/Khadinxc/Sigma2KQL) - A repository of all SIGMA rules converted to KQL that runs on a weekly schedule to update the repository and align with the up to date version of the SIGMA rules repository.
+- [TerraSigma](https://github.com/Khadinxc/TerraSigma) - A repository of all SIGMA rules converted to Microsoft Sentinel Terraform Scheduled analytic resources. The repository runs on a weekly schedule to update the repository and align with the up to date version of the SIGMA rules repository. Proper entity mapping is completed for the rules to ensure the repo is plug-and-play.
 
 ### IDS / IPS / Host IDS / Host IPS
 

From 16231aca10913b4c68f6e643b8926db8aa0a44a0 Mon Sep 17 00:00:00 2001
From: Kaiber <89855993+Khadinxc@users.noreply.github.com>
Date: Sat, 29 Nov 2025 00:42:51 +1100
Subject: [PATCH 2/2] Update README.md

---
 README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/README.md b/README.md
index e61c5d1..cc27e74 100644
--- a/README.md
+++ b/README.md
@@ -100,6 +100,7 @@ Thanks to all [contributors](https://github.com/sbilly/awesome-security/graphs/c
 - [VAST](https://github.com/tenzir/vast) - Open source security data pipeline engine for structured event data, supporting high-volume telemetry ingestion, compaction, and retrieval; purpose-built for security content execution, guided threat hunting, and large-scale investigation.
 - [Substation](https://github.com/brexhq/substation) - Substation is a cloud native data pipeline and transformation toolkit written in Go.
 - [Sigma2KQL](https://github.com/Khadinxc/Sigma2KQL) - A repository of all SIGMA rules converted to KQL that runs on a weekly schedule to update the repository and align with the up to date version of the SIGMA rules repository.
+- [Sigma2SPL](https://github.com/Khadinxc/Sigma2SPL) - A repository of all SIGMA rules converted to SPL that runs on a weekly schedule to update the repository and align with the up to date version of the SIGMA rules repository.
 - [TerraSigma](https://github.com/Khadinxc/TerraSigma) - A repository of all SIGMA rules converted to Microsoft Sentinel Terraform Scheduled analytic resources. The repository runs on a weekly schedule to update the repository and align with the up to date version of the SIGMA rules repository. Proper entity mapping is completed for the rules to ensure the repo is plug-and-play.
 
 ### IDS / IPS / Host IDS / Host IPS