anelshaer/Remote-Linux-Triage-Collection-using-OSquery external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

anelshaer/Remote-Linux-Triage-Collection-using-OSquery

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/anelshaer/Remote-Linux-Triage-Collection-using-OSquery)

Close

anelshaer / Remote-Linux-Triage-Collection-using-OSqueryView on GitHubMore

• External links
• Readme badge

Remotely collect linux live forensics artifacts.

☆14Jul 8, 2022Updated 3 years ago

Alternatives and similar repositories for Remote-Linux-Triage-Collection-using-OSquery

Users that are interested in Remote-Linux-Triage-Collection-using-OSquery are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• forensicmatt / libtsk-rs

  View on GitHub
  Wrapper for TSK (Sleuth Kit) Bindings
  ☆12Jan 10, 2023Updated 3 years ago
• omerbenamram / winstructs

  View on GitHub
  Parsers for common structures across windows formats.
  ☆12Aug 23, 2023Updated 2 years ago
• sunsetkookaburra / rust-libesedb

  View on GitHub
  Safe Rust API to libesedb
  ☆12Sep 10, 2025Updated 6 months ago
• AbdulRhmanAlfaifi / lnk_parser

  View on GitHub
  lnk_parser is a full rust implementation to parse windows LNK files
  ☆23Feb 17, 2026Updated last month
• omerbenamram / pyevtx-rs

  View on GitHub
  Python bindings for https://github.com/omerbenamram/evtx/
  ☆55Jan 3, 2026Updated 3 months ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• gengojs / gengojs

  View on GitHub
  The best i18n middleware for Node.js
  ☆12Nov 7, 2015Updated 10 years ago
• artem-smotrakov / tlsbunny

  View on GitHub
  Framework for creating fuzzers and negative tests for TLS 1.3 implementations
  ☆13Mar 21, 2024Updated 2 years ago
• NVISOsecurity / sigma-public

  View on GitHub
  Generic Signature Format for SIEM Systems
  ☆18Jul 25, 2023Updated 2 years ago
• abaghinyan / Aralez

  View on GitHub
  Aralez is a triage tool for Windows and Linux that automates the collection of system information, network/process data, and files.
  ☆22Mar 26, 2026Updated 2 weeks ago
• theflakes / fmd

  View on GitHub
  Windows file metadata / forensic tool.
  ☆19Oct 12, 2025Updated 5 months ago
• chainguard-dev / osquery-defense-kit

  View on GitHub
  Production-ready detection & response queries for osquery
  ☆603Aug 13, 2025Updated 7 months ago
• mikermcneil / machinepack-github

  View on GitHub
  Communicate with the Github API to get repos, commits, etc.
  ☆17Apr 22, 2019Updated 6 years ago
• davidrecordon / terraform-aws-kolide-fleet

  View on GitHub
  Deploy Kolide's Fleet into AWS using Terraform.
  ☆16Apr 18, 2018Updated 7 years ago
• ColinFinck / nt-hive

  View on GitHub
  Rust crate for accessing keys, values, and data stored in Windows hive (registry) files.
  ☆53Jan 21, 2025Updated last year
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• jjo-sec / malware

  View on GitHub
  Various Malware-Related Utilities
  ☆10Aug 4, 2016Updated 9 years ago
• jandre / brosquery

  View on GitHub
  module for osquery to load Bro logs into tables
  ☆28Apr 28, 2015Updated 10 years ago
• dessant / lock-threads-app

  View on GitHub
  🤖 GitHub App that locks closed issues and pull requests after a period of inactivity
  ☆16Jul 3, 2021Updated 4 years ago
• herosi / triage-collector

  View on GitHub
  ☆23Oct 9, 2024Updated last year
• ph-luffy / Backdoor

  View on GitHub
  ☆17May 5, 2022Updated 3 years ago
• secureworks / atomic-harness

  View on GitHub
  A tool to run and validate telemetry for Atomic Red Team tests
  ☆16Mar 21, 2024Updated 2 years ago
• zxgio / gdb-cheatsheet

  View on GitHub
  GDB cheatsheet for reversing binaries
  ☆21Jan 25, 2019Updated 7 years ago
• CyberSift / OSQUERY-PACKS

  View on GitHub
  Osquery Packs we use for customer security hardening
  ☆12Jun 30, 2025Updated 9 months ago
• NetSPI / ruler

  View on GitHub
  A tool to abuse Exchange services
  ☆12Mar 18, 2024Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• mayHamad / MemTracer

  View on GitHub
  Memory Scaner
  ☆65Sep 9, 2022Updated 3 years ago
• d4rpell / DotRat

  View on GitHub
  DotRat is a Telegram Rat which includes good features and non privileged persistence. Written in C#
  ☆12Aug 14, 2023Updated 2 years ago
• jonpulsifer / dnsmon-go

  View on GitHub
  A golang DNS monitor inspired by https://github.com/gamelinux/passivedns
  ☆30Aug 13, 2025Updated 7 months ago
• Kracken256 / dash-shell-rootkit

  View on GitHub
  Dash rootkit. Linux Trojan Backdoor. (MALWARE)
  ☆12Apr 3, 2023Updated 3 years ago
• mobdk / winNoise

  View on GitHub
  Execute embedded Mimikatz
  ☆13Nov 24, 2021Updated 4 years ago
• actions-rs / core

  View on GitHub
  Some boilerplate code used across the @actions-rs Actions
  ☆11Jan 3, 2022Updated 4 years ago
• sandflysecurity / sandfly-file-decloak

  View on GitHub
  Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.
  ☆29Sep 29, 2025Updated 6 months ago
• ivicanikolicsg / SivoFuzzer

  View on GitHub
  Grey-box fuzzer SIVO
  ☆13Jul 11, 2021Updated 4 years ago
• forensicmatt / RsWindowsThingies

  View on GitHub
  Windows Thingies... but in Rust
  ☆23Nov 12, 2022Updated 3 years ago
• Wordpress hosting with auto-scaling on Cloudways • Ad
  Fully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
• EspressoCake / MITRE_ATTACK_CLI

  View on GitHub
  CLI Search for Security Operators of MITRE ATT&CK URLs
  ☆17Jan 5, 2023Updated 3 years ago
• swisscom / Invoke-Forensics

  View on GitHub
  Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.
  ☆118Nov 28, 2023Updated 2 years ago
• mainframed / SETn3270

  View on GitHub
  TN3270 MitM proxy and so much more
  ☆14Jun 4, 2018Updated 7 years ago
• lukeheath / unicorn

  View on GitHub
  ☆11Oct 14, 2016Updated 9 years ago
• atiertant / sails-oracle

  View on GitHub
  Oracle Database adapter for Sails.js
  ☆13Apr 22, 2015Updated 10 years ago
• turbot / steampipe-mod-kubernetes-insights

  View on GitHub
  View dashboards and reports across all of your Kubernetes clusters using Powerpipe and Steampipe.
  ☆29Mar 25, 2026Updated 2 weeks ago
• PentestBox / masscan

  View on GitHub
  ☆13Apr 16, 2016Updated 9 years ago