Alternatives and similar repositories for OSQUERY-PACKS

Users that are interested in OSQUERY-PACKS are comparing it to the libraries listed below

• defensivedepth / osquery-filters
  ☆34Updated last year
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆55Updated last year
• blackstork-io / fabric-templates
  Open-source Fabric templates for cybersecurity and compliance
  ☆21Updated 6 months ago
• Shuffle / workflows
  Workflows for Shuffle
  ☆23Updated 2 years ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆54Updated last week
• turbot / steampipe-plugin-virustotal
  Use SQL to instantly query file, domain, URL and IP scanning results from VirusTotal.
  ☆23Updated last month
• karimhabush / cis-vsphere
  A tool to assess the compliance of a VMware vSphere environment against the CIS Benchmark.
  ☆52Updated 2 years ago
• izysec / linux-audit
  Some resources to facilitate my blog on auditd for security monitoring
  ☆12Updated 2 years ago
• jctello / JCT-Wazuh
  Tools for Wazuh by Juan C. Tello
  ☆14Updated 3 years ago
• corelight / Dashboards-Splunk-DNS-Hunting-Beaconing
  DNS Dashboard for hunting and identifying beaconing
  ☆16Updated 4 years ago
• Velocidex / cloudvelo
  An experimental Velociraptor implementation using cloud infrastructure
  ☆25Updated 2 weeks ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆22Updated 8 months ago
• activecm / smudge
  Passive OS detection based on SYN packets without Transmitting any Data
  ☆47Updated 2 years ago
• austinsonger / Elastic-Security
  Repo for Automations and other solutions for Elastic SIEM/Security.
  ☆18Updated 4 years ago
• telekom-security / acquire-aws-ec2
  A python script to acquire multiple aws ec2 instances in a forensically sound-ish way
  ☆38Updated 3 years ago
• KaanSK / Go-MISPFeedGenerator
  Golang implementation of PyMISP-feedgenerator
  ☆17Updated 2 years ago
• Shuffle / shuffle-docs
  Documentation used for Shuffle
  ☆19Updated this week
• redcanaryco / vscode-attack
  Visual Studio Code extension for MITRE ATT&CK
  ☆54Updated last year
• michalpurzynski / suricata-rules
  Example Suricata rules implementing some of my detection tactics
  ☆20Updated 2 years ago
• dfir-dd / incident-response-playbooks
  Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents
  ☆44Updated last year
• OktaSecurityLabs / CheatSheets
  ☆33Updated 7 years ago
• center-for-threat-informed-defense / defending-iaas-with-attack
  Defending IaaS with ATT&CK is a project to create a collection of ATT&CK techniques relevant to a Linux IaaS environment, as well as a me…
  ☆14Updated last month
• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆23Updated 4 years ago
• sandialabs / gait
  Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies
  ☆34Updated last year
• Alir3z4 / ansible-suricata
  An Ansible playbook for deploying the Suricata intrusion detection system and fetching Snort rules with Oinkmaster.
  ☆16Updated 3 years ago
• 0xtf / HAMISPA
  Notes for High Availability MISP in AWS
  ☆19Updated 5 years ago
• guardsight / gsvsoc_mission-model
  Incident Response Report Using GitHub-Sphinx
  ☆20Updated 5 years ago
• swimlane / pyattck-data
  This repository contains generated contextual data utilized by pyattck.
  ☆19Updated 4 months ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated 2 years ago
• thinkst / canary-utils
  Collection of useful Canary tools
  ☆81Updated 2 weeks ago