defensivedepth/osquery-filters external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

defensivedepth/osquery-filters

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/defensivedepth/osquery-filters)

Close

defensivedepth / osquery-filtersView on GitHubMore

• External links
• Readme badge

☆34Aug 8, 2023Updated 2 years ago

Alternatives and similar repositories for osquery-filters

Users that are interested in osquery-filters are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• CyberSift / OSQUERY-PACKS

  View on GitHub
  Osquery Packs we use for customer security hardening
  ☆12Jun 30, 2025Updated 11 months ago
• salopensource / chromesal

  View on GitHub
  A Sal client for Chrome OS
  ☆16Jan 3, 2025Updated last year
• guardicode / osquery

  View on GitHub
  Guardicore osqueries collection for asset information, TH and compliance.
  ☆19Dec 22, 2021Updated 4 years ago
• osquery / foundation

  View on GitHub
  osquery Foundation Charter, Legal, and Process Documents
  ☆13Jun 10, 2022Updated 4 years ago
• zeflow / Sigma2SplunkAlert

  View on GitHub
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆12Jul 1, 2021Updated 4 years ago
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• woanware / etw-event-dumper

  View on GitHub
  ☆33Feb 26, 2022Updated 4 years ago
• NextronSystems / evtx-baseline

  View on GitHub
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆91Mar 11, 2026Updated 3 months ago
• wagga40 / Mitre2Datatables

  View on GitHub
  Bring Your Own Mitre Att&ck © Matrix !
  ☆13Oct 19, 2023Updated 2 years ago
• microsoft / MSTIC-Sysmon

  View on GitHub
  Anything Sysmon related from the MSTIC R&D team
  ☆155Jun 8, 2024Updated 2 years ago
• mitre / microsoft-windows-10-stig-baseline

  View on GitHub
  InSpec profile for Microsoft Windows 10, against DISA's Microsoft Windows 10 Security Technical Implementation Guide (STIG) Version 1, Re…
  ☆15Jan 9, 2025Updated last year
• murchisd / splunk_pstree_app

  View on GitHub
  Custom Splunk search command to reconstruct a pstree from Sysmon process creation events (EventCode 1)
  ☆24Mar 30, 2026Updated 2 months ago
• ryanadler / downloadSplunk

  View on GitHub
  Downloading Splunk, made easy through scripts
  ☆28Jun 1, 2026Updated 2 weeks ago
• 3CORESec / Automata

  View on GitHub
  Automatic detection engineering technical state compliance
  ☆55Jul 7, 2024Updated last year
• Kintyre / TA-postfix

  View on GitHub
  Postfix Add-on for Splunk (Compliant with the Mail CIM model)
  ☆11Mar 18, 2021Updated 5 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• AbGuthrie / goquery

  View on GitHub
  Provide a shell like interface by utilizing osquery's distributed API
  ☆83Jun 24, 2020Updated 5 years ago
• splunk / splunkconf-backup

  View on GitHub
  ☆14Jun 8, 2026Updated last week
• cmdaltr / elrond

  View on GitHub
  Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.
  ☆32Nov 23, 2025Updated 6 months ago
• zeek / zeek-agent-framework

  View on GitHub
  This project is no longer maintained. There's a successor at https://github.com/zeek-packages/zeek-agent-v2
  ☆14Oct 12, 2020Updated 5 years ago
• CIRCL / factual-rules-generator

  View on GitHub
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆75Jan 18, 2022Updated 4 years ago
• RealityNet / McAFuse

  View on GitHub
  Toolset to analyze disks encrypted with McAFee FDE technology
  ☆19Mar 11, 2021Updated 5 years ago
• CiscoCXSecurity / log4j

  View on GitHub
  Detection rules to look for Log4J usage and exploitation
  ☆18Jun 21, 2025Updated 11 months ago
• chainguard-sandbox / osqtool

  View on GitHub
  Automated testing, generation & manipulation of #osquery packs
  ☆75May 29, 2026Updated 2 weeks ago
• austincloudguru / ansible-role-splunk-forwarder

  View on GitHub
  ☆31Jun 10, 2024Updated 2 years ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• Tib3rius / Free_Tech_Resources

  View on GitHub
  Compiling a list of free learning resources in different areas of tech
  ☆13Jul 19, 2023Updated 2 years ago
• splunk / TA-misp_es

  View on GitHub
  MISP to Splunk Enterprise Security Theat Intelligence Framework Integration
  ☆14Jul 11, 2023Updated 2 years ago
• ninoseki / kibune

  View on GitHub
  A Sigma based detection pipeline
  ☆12Dec 15, 2023Updated 2 years ago
• tsale / TA_tooling

  View on GitHub
  ☆10Dec 24, 2022Updated 3 years ago
• elastic / sans-dfir-2022

  View on GitHub
  Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"
  ☆11Feb 6, 2025Updated last year
• M3NIX / sigmaio

  View on GitHub
  simple webapp for converting sigma rules into siem queries using the pySigma library
  ☆50Sep 1, 2023Updated 2 years ago
• tmk1221 / frameSmith

  View on GitHub
  ☆11Oct 24, 2023Updated 2 years ago
• improbable-eng / perforce-buildkite-plugin

  View on GitHub
  A buildkite plugin for checking out code from Perforce
  ☆11Mar 27, 2024Updated 2 years ago
• modularise / modularise

  View on GitHub
  ☆20Oct 1, 2020Updated 5 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• operatorequals / terraform-provider-elastic-siem

  View on GitHub
  ☆12Apr 22, 2022Updated 4 years ago
• instruqt / packer-k3s

  View on GitHub
  Build K3s image using Packer
  ☆13May 26, 2026Updated 3 weeks ago
• fmanco / osquery-packs

  View on GitHub
  osquery query packs
  ☆14Aug 31, 2018Updated 7 years ago
• davisshannon / Splunk-Sunburst

  View on GitHub
  Sunburst IOCs for Splunk Ingest
  ☆18Jan 28, 2021Updated 5 years ago
• chainguard-dev / osquery-defense-kit

  View on GitHub
  Production-ready detection & response queries for osquery
  ☆607Apr 22, 2026Updated last month
• NextronSystems / CyberChef

  View on GitHub
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆66Aug 10, 2022Updated 3 years ago
• 3CORESec / SIEGMA

  View on GitHub
  SIEGMA - Transform Sigma rules into SIEM consumables
  ☆160Mar 10, 2025Updated last year