Alternatives and similar repositories for osquery-splunk-dashboards

Users that are interested in osquery-splunk-dashboards are comparing it to the libraries listed below

• Algbra-Labs-OSS / Chronicle
  ☆65Updated last year
• jshlbrd / detection-engineering-pocket-guide
  pocket guide for core detection engineering concepts
  ☆30Updated 2 years ago
• ReconInfoSec / rhq
  Recon Hunt Queries
  ☆78Updated 4 years ago
• elastic / dorothy
  ☆187Updated 2 weeks ago
• OktaSecurityLabs / sgt
  Osquery Mangement Server
  ☆114Updated 5 years ago
• chainguard-dev / osqtool
  Automated testing, generation & manipulation of #osquery packs
  ☆73Updated 11 months ago
• threat-punter / detection-as-code-example
  A POC to implement Detection-as-Code with Terraform and Sumo Logic.
  ☆29Updated 2 years ago
• 0xdefendA / defenda-data-lake
  defendA Data Lake. A firehose pipeline to athena providing enrichment and normalization for security events
  ☆16Updated 2 years ago
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆136Updated last year
• runreveal / sigmalite
  ☆50Updated 3 weeks ago
• matthewdfuller / aws-guides
  AWS docs, guides, and other tools
  ☆75Updated 2 years ago
• haidermdost / Threat-Detection-Maturity-Framework
  ☆18Updated 4 years ago
• spotify / terraform-google-grr
  A Terraform module for GRR: the distributed incident forensics and response framework
  ☆51Updated 5 years ago
• panther-labs / tutorials
  Cloud security tutorials and best practices
  ☆38Updated 2 years ago
• shellcromancer / audit-log-wall-of-shame
  Audit log wall of shame.
  ☆42Updated last month
• k-bailey / detection-engineering-maturity-matrix
  ☆98Updated 3 years ago
• tuckner / automation-capability-matrix
  A tool that allows you to document and assess any security automation in your SOC
  ☆47Updated 11 months ago
• magoo / Incident-Response-Plan
  Boilerplate Incident Response Plan from "Starting Up Security"
  ☆164Updated 4 years ago
• AbGuthrie / goquery
  Provide a shell like interface by utilizing osquery's distributed API
  ☆81Updated 5 years ago
• CrowdStrike / FDR
  Falcon Data Replicator
  ☆33Updated last week
• invictus-ir / ALFA
  ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit l…
  ☆163Updated 7 months ago
• somethingnew2-0 / SimpleCSPM
  GCP CSPM using Google Sheets
  ☆37Updated 6 months ago
• adanalvarez / TrailDiscover
  An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…
  ☆166Updated last month
• zmallen / cloudtrail2sightings
  Convert cloudtrail data to MITRE ATT&CK Sightings
  ☆80Updated 3 years ago
• CrowdStrike / Falcon-Toolkit
  Unleash the power of the Falcon Platform at the CLI
  ☆125Updated last week
• anvilogic-forge / armory
  Anvilogic Forge
  ☆108Updated 3 weeks ago
• amrandazz / attack-guardduty-navigator
  A MITRE ATT&CK Navigator export for AWS GuardDuty Findings
  ☆138Updated 4 years ago
• secureworks / atomic-harness
  A tool to run and validate telemetry for Atomic Red Team tests
  ☆14Updated last year
• turbot / steampipe-mod-zoom-compliance
  Run individual configuration, compliance and security controls or full compliance benchmarks for CIS for Zoom using Powerpipe and Steampi…
  ☆66Updated last month
• 0xThiebaut / sigmai
  Import specific data sources into the Sigma generic and open signature format.
  ☆78Updated 3 years ago