Alternatives and similar repositories for osqtool

Users that are interested in osqtool are comparing it to the libraries listed below

• google / localtoast
  ☆113Updated this week
• jdyke / gcp-iam-analyzer
  Compares and analyzes GCP IAM roles.
  ☆77Updated 3 months ago
• DataDog / workload-security-evaluator
  Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.
  ☆31Updated 8 months ago
• somethingnew2-0 / SimpleCSPM
  GCP CSPM using Google Sheets
  ☆36Updated 2 months ago
• DataDog / attache
  Attaché provides an emulation layer for Cloud Provider IMDS APIs
  ☆57Updated last year
• runreveal / sigmalite
  ☆44Updated 3 months ago
• shellcromancer / audit-log-wall-of-shame
  Audit log wall of shame.
  ☆41Updated 8 months ago
• tstromberg / ttp-bench
  Adversary emulation for EDR/SIEM testing (macOS/Linux)
  ☆44Updated last year
• sttor / awesome-osquery
  Osquery Resources
  ☆60Updated 5 years ago
• Zeerg / helix-honeypot
  K8s API Honeypot with Active Defense Capabilities
  ☆40Updated last year
• carta / krang
  Knowledge Report Alert & Normalization Generator
  ☆27Updated last year
• gyrospectre / squyre
  Security Alert Decoration
  ☆27Updated last month
• abdullahgarcia / kubernetes-for-soc
  kubernetes-for-soc aims to fast-track the learning curve for SOC analysts by enabling them to swiftly grasp the essential concepts and kn…
  ☆54Updated last year
• google / container-explorer
  ☆88Updated 3 weeks ago
• jshlbrd / detection-engineering-pocket-guide
  pocket guide for core detection engineering concepts
  ☆28Updated 2 years ago
• Algbra-Labs-OSS / Chronicle
  ☆65Updated last year
• hashicorp-forge / grove
  A Software as a Service (SaaS) log collection framework.
  ☆173Updated last week
• Permiso-io-tools / cloudtail
  ☆30Updated this week
• bullfrogsec / bullfrog
  Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
  ☆110Updated this week
• OktaSecurityLabs / sgt
  Osquery Mangement Server
  ☆114Updated 4 years ago
• Santiago-Labs / go-ocsf
  ☆69Updated last week
• antitree / seccomp-diff
  ☆73Updated this week
• lirlia / prel
  prel(iminary) is an application that temporarily assigns Google Cloud IAM Roles and includes an approval process.
  ☆45Updated this week
• chainguard-dev / vex
  vexctl is a tool to attest VEX impact statements
  ☆44Updated 2 years ago
• elastic / dorothy
  Dorothy is a tool to test security monitoring and detection for Okta environments
  ☆183Updated 10 months ago
• chainguard-dev / justtrustme
  ☆54Updated this week
• zercurity / zercurity
  Manage, monitor and improve your cyber security posture.
  ☆90Updated 2 years ago
• Permiso-io-tools / bucket-shield
  ☆12Updated this week
• CrowdStrike / gofalcon
  Golang-based SDK to CrowdStrike's APIs
  ☆67Updated this week
• cado-security / AWS_EKS_Cluster_Forensics
  AWS EKS Cluster Forensics
  ☆23Updated 3 years ago