AbGuthrie / goqueryLinks
Provide a shell like interface by utilizing osquery's distributed API
☆81Updated 5 years ago
Alternatives and similar repositories for goquery
Users that are interested in goquery are comparing it to the libraries listed below
Sorting:
- Things to know when DFIR occurs near a vault deployment.☆43Updated 7 years ago
- Competition Infrastructure Management☆87Updated 3 years ago
- How to Zeek Sysmon Logs!☆102Updated 3 years ago
- An extensible honeypot framework☆93Updated 3 years ago
- A CLI tool for querying passive DNS services☆41Updated last year
- Extract indicators of compromise from text, including "escaped" ones.☆160Updated 5 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Updated 4 years ago
- PhishDetect is a library to help identify phishing pages☆109Updated 2 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆109Updated 7 years ago
- ☆35Updated 4 years ago
- Yara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies☆102Updated 4 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆27Updated 7 years ago
- A Passive SSH back-end and scanner.☆103Updated last month
- Bro integration with osquery☆15Updated 2 years ago
- Mitre Att&ck Technique Emulation☆82Updated 6 years ago
- Testing/collecting some container breakouts☆94Updated 6 years ago
- Serverless honeytoken 🕵🏻♂️☆80Updated 2 years ago
- rules to identify files containing juicy information like usernames, passwords etc☆128Updated 7 years ago
- Use Markov Chains to obfuscate data as other data☆54Updated 8 years ago
- threat-intelligence.eu website and repository of information about open standards, documents, methodologies and processes in threat intel…☆48Updated 2 years ago
- Automatically create YARA rules from malicious documents.☆211Updated 3 years ago
- Recog-Go: Pattern Recognition using Rapid7 Recog☆111Updated 2 years ago
- Golang-based subdomain miner leveraging certificate transparency logs☆76Updated last year
- References for FIRST CTI 2019 Symposium presentation☆22Updated 6 years ago
- A YARA Rule Performance Measurement Tool☆59Updated last year
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆123Updated 4 years ago
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- A Spicy protocol analyzer for WireGuard☆29Updated 4 years ago
- A Go implementation of JARM☆119Updated 3 years ago