# SIGMA/YARA Rules

SIGMA and YARA rules are managed from this section. Rules can be cloned for editing or new ones can be created.

* **SIGMA Rules**: Sigma rules are managed from this section. The users can edit, clone, or define a new rule in this section. Also, users can import/export rules and force them to run.

<figure><img src="/files/nyyDMgtzzbV96YBK3Jcp" alt=""><figcaption></figcaption></figure>

* **Windows YARA Rules**: Windows YARA Rules are managed from this section. The users can edit or define a new rule in this section. Also, users can import/export rules.

<figure><img src="/files/hCG32YhRSqNx1PjyARj4" alt=""><figcaption></figcaption></figure>

* **Convert Rule**: This section allows users to convert their sysmon rules for CyberCyte to use it. If the users are already using sysmon, this section will be helpful.

<figure><img src="/files/xrYNJF2UM5s7NcJJJ3Wu" alt=""><figcaption></figcaption></figure>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.cloudcyte.com/admin-guide/rules-and_policies/sigma_yara_rules.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.