OktaSecurityLabs / sgt
Osquery Mangement Server
☆113Updated 4 years ago
Alternatives and similar repositories for sgt:
Users that are interested in sgt are comparing it to the libraries listed below
- A Terraform module for GRR: the distributed incident forensics and response framework☆51Updated 4 years ago
- [DEPRECATED] A quickstart demo for Kolide tools☆52Updated 6 years ago
- Automated testing, generation & manipulation of #osquery packs☆72Updated 5 months ago
- Things to know when DFIR occurs near a vault deployment.☆43Updated 6 years ago
- Remote Memory Acquisition Tool☆245Updated 4 years ago
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- A python module for orchestrating content acquisitions and analysis via amazon ssm.☆59Updated last year
- Simple Docker-based quickstart for osquery, Fleet, and ELK stack☆63Updated last year
- Python module for evaluation of AWS account best practices around incident handling readieness.☆55Updated 4 years ago
- 'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.☆64Updated 5 years ago
- defendA Data Lake. A firehose pipeline to athena providing enrichment and normalization for security events☆16Updated last year
- AWS Metadata Proxy for protection against SSRF☆67Updated 5 years ago
- ☆82Updated 5 years ago
- GCP CSPM using Google Sheets☆35Updated 9 months ago
- WebUI of MineMeld☆43Updated 2 years ago
- osquery extensions by Trail of Bits☆263Updated last year
- Competition Infrastructure Management☆86Updated 3 years ago
- Example detection of compromise credentials in AWS☆121Updated 6 years ago
- Provide a shell like interface by utilizing osquery's distributed API☆81Updated 4 years ago
- Dockerfiles for NSM tools☆84Updated 7 years ago
- Start enforcing G Suite third-party apps via OAuth☆58Updated 6 years ago
- Manage GuardDuty At Enterprise Scale☆22Updated 4 years ago
- CrowdStrike Falcon log forwarder from falcon S3 bucket to your S3 bucket☆11Updated 3 years ago
- osquery query packs☆14Updated 6 years ago
- Serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch.☆140Updated last year
- Varna: Quick & Cheap AWS CloudTrail Monitoring with Event Query Language (EQL)☆51Updated 2 years ago
- Carbon Black API Resources☆93Updated 7 years ago
- PassiveDNS in Go☆125Updated 5 years ago
- A Slack bot to add security info to messages containing URLs, hashes and IPs☆71Updated 7 months ago
- Docker container for MISP☆96Updated 6 years ago