Alternatives and similar repositories for OSQUERY-PACKS

Users that are interested in OSQUERY-PACKS are comparing it to the libraries listed below

• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆22Updated 7 months ago
• defensivedepth / osquery-filters
  ☆34Updated last year
• Shuffle / workflows
  Workflows for Shuffle
  ☆23Updated 2 years ago
• austinsonger / Elastic-Security
  Repo for Automations and other solutions for Elastic SIEM/Security.
  ☆18Updated 3 years ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆55Updated 10 months ago
• gyrospectre / squyre
  Security Alert Decoration
  ☆27Updated last month
• Velocidex / cloudvelo
  An experimental Velociraptor implementation using cloud infrastructure
  ☆25Updated last week
• chihebchebbi / Azure-Sentinel-Hive-Playbook
  Send High & New Incidents to The Hive incident management Platform
  ☆18Updated 4 years ago
• SekoiaLab / FastIR_Server
  The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent
  ☆12Updated 8 years ago
• turbot / steampipe-plugin-virustotal
  Use SQL to instantly query file, domain, URL and IP scanning results from VirusTotal.
  ☆23Updated this week
• KaanSK / Go-MISPFeedGenerator
  Golang implementation of PyMISP-feedgenerator
  ☆17Updated 2 years ago
• corelight / Dashboards-Splunk-DNS-Hunting-Beaconing
  DNS Dashboard for hunting and identifying beaconing
  ☆16Updated 4 years ago
• izysec / linux-audit
  Some resources to facilitate my blog on auditd for security monitoring
  ☆12Updated 2 years ago
• cdefid / TheHiveIRPlaybook
  TheHiveIRPlaybook is a collection of TheHive case templates used for Incident Response
  ☆13Updated 4 years ago
• deeso / fleet-deployment
  ☆15Updated 5 years ago
• CanTopay / thehive-playbook-creator
  A script to create and assign SOP tasks into the cases
  ☆19Updated 4 years ago
• SentineLabs / log4j_response
  ☆15Updated 3 years ago
• Shuffle / shuffle-docs
  Documentation used for Shuffle
  ☆19Updated this week
• OTRF / sigma
  Generic Signature Format for SIEM Systems
  ☆14Updated 3 years ago
• OTRF / openhunt
  ☆34Updated 3 years ago
• cyentific-rni / SAG
  An elevated STIX representation of the MITRE ATT&CK Groups knowledge base
  ☆23Updated 3 years ago
• blackstork-io / fabric-templates
  Open-source Fabric templates for cybersecurity and compliance
  ☆19Updated 4 months ago
• center-for-threat-informed-defense / defending-iaas-with-attack
  Defending IaaS with ATT&CK is a project to create a collection of ATT&CK techniques relevant to a Linux IaaS environment, as well as a me…
  ☆14Updated this week
• whereiskurt / tiogo
  A modern CLI for Tenable.io written in Go
  ☆14Updated 4 years ago
• spyx / SysmonGrahp
  ☆15Updated 4 years ago
• Benster900 / ThreatWaffle
  Threat hunting repo for my independent study on threat hunting with OSQuery
  ☆27Updated 7 years ago
• StamusNetworks / surimisp
  Check IOC provided by a MISP instance on Suricata events
  ☆17Updated 5 years ago
• sans-blue-team / course_indices
  Indices for courses in SANS' Network Security Operations curriculum
  ☆15Updated 9 years ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆54Updated last week
• the2dl / SSDT
  Stupid Simple Detection Testing
  ☆13Updated last year