chainguard-sandbox/osqtool external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

chainguard-sandbox/osqtool

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/chainguard-sandbox/osqtool)

Close

chainguard-sandbox / osqtoolView on GitHubMore

• External links
• Readme badge

Automated testing, generation & manipulation of #osquery packs

☆74Oct 16, 2024Updated last year

Alternatives and similar repositories for osqtool

Users that are interested in osqtool are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• chainguard-dev / osquery-defense-kit

  View on GitHub
  Production-ready detection & response queries for osquery
  ☆602Aug 13, 2025Updated 7 months ago
• CyberSift / OSQUERY-PACKS

  View on GitHub
  Osquery Packs we use for customer security hardening
  ☆12Jun 30, 2025Updated 8 months ago
• sttor / awesome-osquery

  View on GitHub
  Osquery Resources
  ☆63Aug 23, 2019Updated 6 years ago
• honk-ci / honk-twitter-bot

  View on GitHub
  A simple honk twitter bot that reply honk slash command
  ☆18Oct 27, 2020Updated 5 years ago
• chainguard-dev / hakn

  View on GitHub
  A High-Availability distribution of Knative.
  ☆20Mar 20, 2024Updated 2 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• GSA / laptop-management

  View on GitHub
  ALPHA/WIP for OSquery configuration for Mac and Linux Operating Systems
  ☆16Jan 9, 2018Updated 8 years ago
• Kirtar22 / ThreatHunting_with_Osquery

  View on GitHub
  Threat Hunting & Incident Investigation with Osquery
  ☆216Mar 30, 2022Updated 3 years ago
• chainguard-dev / vex

  View on GitHub
  vexctl is a tool to attest VEX impact statements
  ☆45Mar 27, 2023Updated 3 years ago
• defensivedepth / osquery-filters

  View on GitHub
  ☆34Aug 8, 2023Updated 2 years ago
• kubernetes-sigs / release-utils

  View on GitHub
  ☆24Mar 18, 2026Updated last week
• fmanco / osquery-packs

  View on GitHub
  osquery query packs
  ☆14Aug 31, 2018Updated 7 years ago
• chainguard-dev / clank

  View on GitHub
  Simple tool that allows you to detect imposter commits in GitHub Actions workflows.
  ☆29Dec 17, 2024Updated last year
• chainguard-dev / crow-registry

  View on GitHub
  ☆26Aug 31, 2023Updated 2 years ago
• chainguard-dev / github-audit-alerter

  View on GitHub
  Slack alert bot for matching Github Audit Events
  ☆10Nov 12, 2024Updated last year
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• kubewarden / verify-image-signatures

  View on GitHub
  A Kubewarden Policy that verifies all the signatures of the container images referenced by a Pod
  ☆12Jan 20, 2026Updated 2 months ago
• jmpsec / osctrl

  View on GitHub
  Fast and efficient osquery management
  ☆494Mar 18, 2026Updated last week
• jatrost / awesome-detection-rules

  View on GitHub
  This is a collection of threat detection rules / rules engines that I have come across.
  ☆297May 5, 2024Updated last year
• chainguard-dev / policy-catalog

  View on GitHub
  ☆20Feb 5, 2026Updated last month
• devops-kung-fu / lucha

  View on GitHub
  A CLI that scans for sensitive data in source code
  ☆14Mar 22, 2023Updated 3 years ago
• google / containerdbg

  View on GitHub
  ☆73May 13, 2025Updated 10 months ago
• DataDog / threatest

  View on GitHub
  Threatest is a CLI and Go framework for end-to-end testing threat detection rules.
  ☆341Mar 22, 2026Updated last week
• secureworks / atomic-harness

  View on GitHub
  A tool to run and validate telemetry for Atomic Red Team tests
  ☆16Mar 21, 2024Updated 2 years ago
• anelshaer / Remote-Linux-Triage-Collection-using-OSquery

  View on GitHub
  Remotely collect linux live forensics artifacts.
  ☆14Jul 8, 2022Updated 3 years ago
• NordVPN Threat Protection Pro™ • Ad
  Take your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
• abbbi / ssenv

  View on GitHub
  Exit if environment variables known to be used as access tokens are set.
  ☆15May 30, 2022Updated 3 years ago
• salopensource / chromesal

  View on GitHub
  A Sal client for Chrome OS
  ☆16Jan 3, 2025Updated last year
• chainguard-images / actions

  View on GitHub
  GitHub actions for the chainguard-images
  ☆21Mar 16, 2026Updated last week
• kolide / kolide-quickstart

  View on GitHub
  [DEPRECATED] A quickstart demo for Kolide tools
  ☆52May 29, 2018Updated 7 years ago
• blackberry / Falco-bypasses

  View on GitHub
  Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).
  ☆89Jan 28, 2024Updated 2 years ago
• kubernetes-sigs / release-sdk

  View on GitHub
  Interfaces and implementations for building Kubernetes releases.
  ☆19Updated this week
• google / acjs

  View on GitHub
  ☆11Dec 19, 2024Updated last year
• knightsc / system_policy

  View on GitHub
  osquery table extension that allows querying of information from the macOS private SystemPolicy.framework
  ☆31Oct 29, 2021Updated 4 years ago
• sigstore / sget

  View on GitHub
  ☆23Mar 13, 2023Updated 3 years ago
• NordVPN Threat Protection Pro™ • Ad
  Take your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
• philips-labs / fatt

  View on GitHub
  fatt tries to find any purl in your project by looking at predefined fields in the supported packages. These fields describe using a purl…
  ☆11Mar 19, 2026Updated last week
• sigstore / helm-charts

  View on GitHub
  Helm charts for sigstore project
  ☆90Updated this week
• macadmins / osquery-extension

  View on GitHub
  An osquery extension for endpoint engineers
  ☆121Mar 16, 2026Updated last week
• Benster900 / ThreatWaffle

  View on GitHub
  Threat hunting repo for my independent study on threat hunting with OSQuery
  ☆27Jan 16, 2018Updated 8 years ago
• square / chrometric

  View on GitHub
  System telemetry for Chrome OS
  ☆17Sep 2, 2021Updated 4 years ago
• rndmIdi0cy / Menagerie

  View on GitHub
  Crowdstrike response script containing various functions for IR/triage
  ☆12Dec 7, 2020Updated 5 years ago
• 0x4D31 / santamon

  View on GitHub
  Lightweight macOS detection agent built on Santa’s Endpoint Security telemetry.
  ☆109Dec 3, 2025Updated 3 months ago