AbGuthrie / goqueryLinks
Provide a shell like interface by utilizing osquery's distributed API
☆81Updated 5 years ago
Alternatives and similar repositories for goquery
Users that are interested in goquery are comparing it to the libraries listed below
Sorting:
- Things to know when DFIR occurs near a vault deployment.☆43Updated 7 years ago
- Competition Infrastructure Management☆86Updated 3 years ago
- How to Zeek Sysmon Logs!☆102Updated 3 years ago
- A CLI tool for querying passive DNS services☆41Updated last year
- PhishDetect is a library to help identify phishing pages☆109Updated 2 years ago
- Extract indicators of compromise from text, including "escaped" ones.☆160Updated 5 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆109Updated 7 years ago
- Collect autorun records from running system☆60Updated 3 years ago
- Serverless honeytoken 🕵🏻♂️☆80Updated 2 years ago
- AWS EKS Cluster Forensics☆23Updated 4 years ago
- A Go implementation of JARM☆119Updated 3 years ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Updated 4 years ago
- A packer utility to create and capture DFIR Image for use AWS & Azure☆15Updated 5 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆27Updated 7 years ago
- Whitelisting LD_PRELOAD libraries using LD_AUDIT☆63Updated 3 years ago
- Recog-Go: Pattern Recognition using Rapid7 Recog☆115Updated 2 years ago
- The SSH Multiplex Backdoor Tool☆65Updated 5 years ago
- Use Markov Chains to obfuscate data as other data☆54Updated 9 years ago
- Security conferences talks☆25Updated 5 years ago
- ☆35Updated 4 years ago
- threat-intelligence.eu website and repository of information about open standards, documents, methodologies and processes in threat intel…☆48Updated 3 years ago
- Open source tools, libraries, and datasets related to the runZero product and associated research☆120Updated 2 weeks ago
- Automatically create YARA rules from malicious documents.☆211Updated 3 years ago
- Bro integration with osquery☆15Updated 2 years ago
- pollen - A command-line tool for interacting with TheHive☆35Updated 6 years ago
- Please use https://github.com/veeral-patel/true-positive instead☆69Updated 2 years ago
- A Passive SSH back-end and scanner.☆103Updated 2 months ago
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆106Updated 6 years ago
- Yara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies☆102Updated 4 years ago
- Cisco Orbital - Osquery queries by Talos☆134Updated 11 months ago