Alternatives and similar repositories for sgt

Users that are interested in sgt are comparing it to the libraries listed below

• magoo / Vault-for-Incident-Responders
  Things to know when DFIR occurs near a vault deployment.
  ☆44Updated 7 years ago
• spotify / terraform-google-grr
  A Terraform module for GRR: the distributed incident forensics and response framework
  ☆52Updated 5 years ago
• kolide / kolide-quickstart
  [DEPRECATED] A quickstart demo for Kolide tools
  ☆52Updated 7 years ago
• Netflix-Skunkworks / cloudtrail-anomaly
  ☆83Updated 6 years ago
• mozilla / ssm-acquire
  A python module for orchestrating content acquisitions and analysis via amazon ssm.
  ☆58Updated 2 years ago
• Netflix-Skunkworks / aws-metadata-proxy
  AWS Metadata Proxy for protection against SSRF
  ☆68Updated 5 years ago
• ThreatResponse / margaritashotgun
  Remote Memory Acquisition Tool
  ☆252Updated 5 years ago
• trailofbits / osquery-extensions
  osquery extensions by Trail of Bits
  ☆267Updated 2 years ago
• ThreatResponse / ThreatPrep
  Python module for evaluation of AWS account best practices around incident handling readieness.
  ☆55Updated 5 years ago
• mikermcneil / fleet-osquery-in-a-box
  Simple Docker-based quickstart for osquery, Fleet, and ELK stack
  ☆63Updated 2 years ago
• sendgrid / krampus
  The original AWS security enforcer™
  ☆61Updated 6 years ago
• demisto / alfred
  A Slack bot to add security info to messages containing URLs, hashes and IPs
  ☆71Updated last year
• ThreatResponse / aws_ir_plugins
  Core incident handling plugins for aws_ir cli, incident pony, and more.
  ☆21Updated 7 years ago
• kolide / osquery-starter-kit
  A starter-kit for a source-controlled, CLI-based osquery management workflow.
  ☆30Updated 7 years ago
• aabed / dockpot
  ☆49Updated 10 years ago
• threatstack / trashtaxi
  Keeping your infrastructure clean since 2018
  ☆12Updated last year
• AbGuthrie / goquery
  Provide a shell like interface by utilizing osquery's distributed API
  ☆81Updated 5 years ago
• tradichel / AWSSecurityAutomationFramework
  Framework for reviewing and responding to events in AWS Flow Logs using Lambda Function
  ☆46Updated 5 months ago
• ansorren / GDPatrol
  A Lambda-powered Security Orchestration framework for AWS GuardDuty
  ☆53Updated 6 years ago
• apolloclark / argos
  Terraform stack to deploy ELK Threat Hunting on Amazon AWS.
  ☆88Updated 6 years ago
• Netflix-Skunkworks / aws-credential-compromise-detection
  Example detection of compromise credentials in AWS
  ☆122Updated 7 years ago
• willbengtson / trailblazer-aws
  Blazing CloudTrail since 2018
  ☆138Updated 6 years ago
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 5 years ago
• rawdigits / go-flashpaper
  Flashpaper is a simple go-based service for creating one time use links to text data or individual files.
  ☆152Updated last year
• chainguard-dev / osqtool
  Automated testing, generation & manipulation of #osquery packs
  ☆73Updated last year
• 3CORESec / AWS-AutoMirror
  Automation of VPC Traffic Mirror Sessions in AWS
  ☆35Updated last month
• Phillipmartin / gopassivedns
  PassiveDNS in Go
  ☆125Updated 6 years ago
• magoo / osquery-hids
  Launchd daemon that reports major OSX modifications through growl
  ☆16Updated 10 years ago
• chef-cookbooks / auditd
  Install and configure user mode auditd tools
  ☆34Updated 2 years ago
• philhagen / timeshift
  A python script to shift the timestamp on syslog data. Useful for forensicators combating time skew.
  ☆21Updated 3 years ago