OktaSecurityLabs / sgt

Related projects ⓘ

Alternatives and complementary repositories for sgt

• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆95Updated 4 years ago
• Netflix-Skunkworks / cloudtrail-anomaly
  ☆82Updated 4 years ago
• kolide / kolide-quickstart
  [DEPRECATED] A quickstart demo for Kolide tools
  ☆52Updated 6 years ago
• Netflix-Skunkworks / aws-metadata-proxy
  AWS Metadata Proxy for protection against SSRF
  ☆68Updated 4 years ago
• somethingnew2-0 / SimpleCSPM
  GCP CSPM using Google Sheets
  ☆34Updated 5 months ago
• chainguard-dev / osqtool
  Automated testing, generation & manipulation of #osquery packs
  ☆70Updated last month
• ThreatResponse / margaritashotgun
  Remote Memory Acquisition Tool
  ☆242Updated 4 years ago
• darkarnium / perimeterator
  'Continuous' AWS perimeter monitoring: Periodically scan internet facing AWS resources to detect misconfigured services.
  ☆62Updated 5 years ago
• magoo / Vault-for-Incident-Responders
  Things to know when DFIR occurs near a vault deployment.
  ☆43Updated 6 years ago
• spotify / terraform-google-grr
  A Terraform module for GRR: the distributed incident forensics and response framework
  ☆51Updated 4 years ago
• mikermcneil / fleet-osquery-in-a-box
  Simple Docker-based quickstart for osquery, Fleet, and ELK stack
  ☆60Updated last year
• sendgrid / krampus
  The original AWS security enforcer™
  ☆59Updated 5 years ago
• ThreatResponse / ThreatPrep
  Python module for evaluation of AWS account best practices around incident handling readieness.
  ☆55Updated 4 years ago
• open-nsm / ContainNSM
  Dockerfiles for NSM tools
  ☆84Updated 7 years ago
• cookpad / aws-falcon-data-forwarder
  CrowdStrike Falcon log forwarder from falcon S3 bucket to your S3 bucket
  ☆11Updated 3 years ago
• trailofbits / osquery-extensions
  osquery extensions by Trail of Bits
  ☆262Updated last year
• 0xdefendA / defenda-data-lake
  defendA Data Lake. A firehose pipeline to athena providing enrichment and normalization for security events
  ☆16Updated last year
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated last year
• mozilla / ssm-acquire
  A python module for orchestrating content acquisitions and analysis via amazon ssm.
  ☆58Updated last year
• kolide / osquery-starter-kit
  A starter-kit for a source-controlled, CLI-based osquery management workflow.
  ☆30Updated 6 years ago
• willbengtson / trailblazer-aws
  Blazing CloudTrail since 2018
  ☆134Updated 5 years ago
• endgameinc / varna
  Varna: Quick & Cheap AWS CloudTrail Monitoring with Event Query Language (EQL)
  ☆51Updated last year
• rocknsm / rock-scripts
  Bro scripts for the ROCK platform. http://rocknsm.io
  ☆33Updated last year
• Phillipmartin / gopassivedns
  PassiveDNS in Go
  ☆122Updated 5 years ago
• sonofagl1tch / AWSDetonationLab
  This script is used to generate some basic detections of the aws security services
  ☆71Updated 2 years ago