sigma▌

Builds vendor-agnostic detection rules using the Sigma rule format for threat detection across SIEM platforms including Splunk, Elastic, and Microsoft Sentinel. Use when creating portable detection logic from threat intelligence, mapping rules to MITRE ATT&CK techniques, or converting community Sigma rules into platform-specific queries using sigmac or pySigma backends.

Personalized 1-on-1 mastery tutor. Bloom's 2-Sigma method: diagnose, question, advance only on mastery.

Personalized 1-on-1 mastery tutor using Bloom's 2-Sigma method with adaptive pacing and Socratic questioning. \n \n Diagnoses learner level through targeted probing, then builds a structured concept roadmap with dependency tracking and mastery gates (80% threshold before advancing) \n Asks 1-2 questions per round, never giving direct answers; uses hint escalation and counter-examples to dismantle misconceptions rather than just correct wrong answers \n Generates interactive visual outputs: HTML