AbGuthrie / goquery
Provide a shell like interface by utilizing osquery's distributed API
☆81Updated 4 years ago
Alternatives and similar repositories for goquery:
Users that are interested in goquery are comparing it to the libraries listed below
- Things to know when DFIR occurs near a vault deployment.☆43Updated 6 years ago
- How to Zeek Sysmon Logs!☆101Updated 3 years ago
- ☆33Updated 3 years ago
- Collect autorun records from running system☆61Updated 3 years ago
- Osquery Mangement Server☆114Updated 4 years ago
- Detect kerberos attacks in pcap files☆29Updated 9 years ago
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- Sandbox feature upgrade with the help of wrapped samples☆76Updated 6 years ago
- Extract indicators of compromise from text, including "escaped" ones.☆159Updated 5 years ago
- Recog-Go: Pattern Recognition using Rapid7 Recog☆108Updated last year
- A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…☆71Updated 3 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆109Updated 7 years ago
- threat-intelligence.eu website and repository of information about open standards, documents, methodologies and processes in threat intel…☆48Updated 2 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆27Updated 7 years ago
- pollen - A command-line tool for interacting with TheHive☆35Updated 5 years ago
- Automatically create YARA rules from malicious documents.☆211Updated 2 years ago
- Recon Hunt Queries☆77Updated 3 years ago
- Indicator Extractor☆139Updated 6 years ago
- Import specific data sources into the Sigma generic and open signature format.☆78Updated 3 years ago
- Security Onion Elastic Stack☆46Updated 4 years ago
- A simple binary wrapper for DNS canarytokens.☆25Updated 2 years ago
- Serverless, real-time, ClamAV+Yara scanning for your S3 Buckets☆31Updated 11 months ago
- Honeypot log processor to create OTX Pulse entries☆28Updated last year
- Mitre Att&ck Technique Emulation☆82Updated 6 years ago
- Use Markov Chains to obfuscate data as other data☆53Updated 8 years ago
- Competition Infrastructure Management☆87Updated 3 years ago
- PhishDetect is a library to help identify phishing pages☆107Updated last year
- Paper and Links to Crimeware in the Modern Era☆31Updated 5 years ago
- Yara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies☆102Updated 4 years ago
- ☆53Updated 6 years ago