# SIGMA/YARA Rules

SIGMA and YARA rules are managed from this section. Rules can be cloned for editing or new ones can be created.

* **SIGMA Rules**: Sigma rules are managed from this section. The users can edit, clone, or define a new rule in this section. Also, users can import/export rules and force them to run.

<figure><img src="https://1723175359-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LuHp6M9xm4Gdg2pWusc%2Fuploads%2FUbGNTJqfe8KszHZyhm4L%2Fimage.png?alt=media&#x26;token=6a4b800f-b12d-44a5-97c3-0ddf4d597687" alt=""><figcaption></figcaption></figure>

* **Windows YARA Rules**: Windows YARA Rules are managed from this section. The users can edit or define a new rule in this section. Also, users can import/export rules.

<figure><img src="https://1723175359-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LuHp6M9xm4Gdg2pWusc%2Fuploads%2FgXEQaNq2ZuJZW3iIlr2r%2Fimage.png?alt=media&#x26;token=5e4b8806-8557-4af2-9303-1983feb946d9" alt=""><figcaption></figcaption></figure>

* **Convert Rule**: This section allows users to convert their sysmon rules for CyberCyte to use it. If the users are already using sysmon, this section will be helpful.

<figure><img src="https://1723175359-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LuHp6M9xm4Gdg2pWusc%2Fuploads%2FpbTfgqHnbaf66X6QIXeR%2Fimage.png?alt=media&#x26;token=2a4b22f0-104b-4fe2-a16d-ea8e157aa7d8" alt=""><figcaption></figcaption></figure>