Alternatives and similar repositories for goquery:

Users that are interested in goquery are comparing it to the libraries listed below

• gen0cide / laforge
  Competition Infrastructure Management
  ☆86Updated 3 years ago
• botherder / go-autoruns
  Collect autorun records from running system
  ☆60Updated 3 years ago
• ninoseki / ukemi
  A CLI tool for querying passive DNS services
  ☆41Updated last year
• OTRF / openhunt
  ☆33Updated 3 years ago
• Neo23x0 / exotron
  Sandbox feature upgrade with the help of wrapped samples
  ☆76Updated 6 years ago
• salesforce / bro-sysmon
  How to Zeek Sysmon Logs!
  ☆102Updated 3 years ago
• DiabloHorn / yara4pentesters
  rules to identify files containing juicy information like usernames, passwords etc
  ☆127Updated 7 years ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆105Updated 6 years ago
• olafhartong / detection-sources
  ☆53Updated 5 years ago
• ReconInfoSec / rhq
  Recon Hunt Queries
  ☆76Updated 3 years ago
• magoo / Vault-for-Incident-Responders
  Things to know when DFIR occurs near a vault deployment.
  ☆43Updated 6 years ago
• Neo23x0 / panopticon
  A YARA Rule Performance Measurement Tool
  ☆58Updated 11 months ago
• Benster900 / ThreatWaffle
  Threat hunting repo for my independent study on threat hunting with OSQuery
  ☆28Updated 7 years ago
• fugawi / mate
  Mitre Att&ck Technique Emulation
  ☆82Updated 5 years ago
• xenoscr / atomiccaldera
  A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…
  ☆71Updated 3 years ago
• bro / bro-osquery
  Bro integration with osquery
  ☆15Updated last year
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 4 years ago
• spyre-project / spyre
  simple YARA-based IOC scanner
  ☆166Updated last week
• tylabs / dovehawk
  Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
  ☆122Updated 3 years ago
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆35Updated 5 years ago
• assafmo / xioc
  Extract indicators of compromise from text, including "escaped" ones.
  ☆160Updated 4 years ago
• sttor / awesome-osquery
  Osquery Resources
  ☆60Updated 5 years ago
• xorrior / goesf
  Golang command line tool for the macOS Endpoint Security Framework
  ☆29Updated 5 years ago
• Security-Onion-Solutions / securityonion-elastic
  Security Onion Elastic Stack
  ☆46Updated 4 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 4 years ago
• cylance / MarkovObfuscate
  Use Markov Chains to obfuscate data as other data
  ☆52Updated 8 years ago
• target / halogen
  Automatically create YARA rules from malicious documents.
  ☆208Updated 2 years ago
• opensourcesec / CIRTKit
  Tools for the Computer Incident Response Team
  ☆143Updated 7 years ago
• ninoseki / uzen
  Website crawler with YARA detection
  ☆88Updated last year
• frikky / hive4go
  A Golang API for TheHive
  ☆13Updated 4 years ago