Alternatives and similar repositories for osquery-defense-kit

Users that are interested in osquery-defense-kit are comparing it to the libraries listed below

• threathunters-io / laurel
  Transform Linux Audit logs for SIEM usage
  ☆773Updated 2 weeks ago
• panther-labs / panther-analysis
  Built-in Panther detection rules and policies
  ☆403Updated this week
• FoxIO-LLC / LogSlash
  A standard for reducing log volume without sacrificing analytical capability
  ☆206Updated 4 months ago
• DataDog / threatest
  Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
  ☆330Updated 2 months ago
• elastic / dorothy
  Dorothy is a tool to test security monitoring and detection for Okta environments
  ☆184Updated 11 months ago
• 0x4D31 / detection-and-response-pipeline
  ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …
  ☆281Updated last year
• SecurityBrewery / catalyst
  ⚡️ Catalyst is a self-hosted, open source incident response platform and ticket system that helps to automate alert handling and incident…
  ☆411Updated 2 weeks ago
• facebookincubator / TTPForge
  The TTPForge is a Cybersecurity Framework for developing, automating, and executing attacker Tactics, Techniques, and Procedures (TTPs).
  ☆387Updated last week
• cado-security / varc
  Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…
  ☆255Updated 8 months ago
• atc-project / atc-react
  A knowledge base of actionable Incident Response techniques
  ☆643Updated 3 years ago
• ocsf / ocsf-schema
  OCSF Schema
  ☆707Updated last week
• chronicle / detection-rules
  Collection of example YARA-L rules for use within Google Security Operations
  ☆417Updated 3 weeks ago
• google / cloud-forensics-utils
  Python library to carry out DFIR analysis on the Cloud
  ☆481Updated last month
• brexhq / substation
  Substation is a toolkit for routing, normalizing, and enriching security event and audit logs.
  ☆373Updated 2 weeks ago
• cisagov / crossfeed
  External monitoring for organization assets
  ☆409Updated last year
• center-for-threat-informed-defense / attack-flow
  Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by devel…
  ☆664Updated last week
• sublime-security / sublime-rules
  Sublime rules for email attack detection, prevention, and threat hunting.
  ☆313Updated this week
• jatrost / awesome-detection-rules
  This is a collection of threat detection rules / rules engines that I have come across.
  ☆291Updated last year
• jmpsec / osctrl
  Fast and efficient osquery management
  ☆455Updated last month
• target / strelka
  Real-time, container-based file scanning at enterprise scale
  ☆932Updated last week
• google / dfiq
  DFIQ is a collection of investigative questions and the approaches for answering them
  ☆286Updated 6 months ago
• threatcl / threatcl
  Documenting your Threat Models with HCL
  ☆432Updated last month
• jatrost / awesome-kubernetes-threat-detection
  A curated list of resources about detecting threats and defending Kubernetes systems.
  ☆385Updated last year
• TalEliyahu / awesome-CISO-maturity-models
  Maturity models help integrate traditionally separate organizational functions, set process improvement goals and priorities, provide gui…
  ☆239Updated last week
• Permiso-io-tools / CloudGrappler
  ☆262Updated 7 months ago
• dfir-iris / iris-web
  Collaborative Incident Response platform
  ☆1,214Updated this week
• sttor / awesome-osquery
  Osquery Resources
  ☆61Updated 5 years ago
• palantir / osquery-configuration
  A repository for using osquery for incident detection and response
  ☆855Updated 2 years ago
• NUKIB / misp
  Docker image for MISP
  ☆132Updated last month
• sublime-security / sublime-platform
  A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…
  ☆219Updated last month