Alternatives and similar repositories for endpoint-package

Users that are interested in endpoint-package are comparing it to the libraries listed below

• elastic / security-docs
  Elastic Security Documentation
  ☆92Updated last week
• google / mandiant-ti-client
  ☆19Updated last year
• elastic / package-spec
  EPR package specifications
  ☆19Updated this week
• elastic / elastic-agent
  Elastic Agent - single, unified way to add monitoring for logs, metrics, and other types of data to a host.
  ☆217Updated this week
• elastic / endpoint
  ☆41Updated 8 months ago
• elastic / observability-docs
  Elastic Observability Documentation
  ☆39Updated 2 weeks ago
• elastic / integrations
  ☆312Updated this week
• google / maldoca
  Malicious Microsoft Office document analyzer
  ☆66Updated last year
• elastic / elastic-integration-corpus-generator-tool
  Command line tool used for generating events corpus dynamically given a specific integration
  ☆23Updated 10 months ago
• elastic / elastic-package
  elastic-package - Command line tool for developing Elastic Integrations
  ☆67Updated last week
• paranoidninja / Process-Instrumentation-Syscall-Hook
  A simple program to hook the current process to identify the manual syscall executions on windows
  ☆263Updated 3 years ago
• SigmaHQ / Detection-Rule-License
  Detection Rule License (DRL)
  ☆21Updated 11 months ago
• elastic / package-storage
  Package storage for packages served through the package registry service
  ☆10Updated 2 years ago
• snyk / leaky-vessels-dynamic-detector
  Leaky Vessels Dynamic Detector
  ☆103Updated 7 months ago
• google / python-security-manager
  ☆36Updated 2 years ago
• yasindce1998 / KubeDagger
  Kubernetes offensive framework built in eBPF
  ☆39Updated 2 years ago
• InQuest / yara-rules-vt
  Collection of YARA rules designed for usage through VirusTotal.com.
  ☆79Updated last year
• misthi0s / Malware_IOCs
  IOCs for various malware families
  ☆11Updated last year
• MAECProject / cuckoo
  Cuckoo Sandbox is an automated dynamic malware analysis system
  ☆10Updated 5 years ago
• fortra / CVE-2022-30136
  Windows Network File System Remote exploit for CVE-2022-30136
  ☆13Updated 2 years ago
• mandiant / capa-testfiles
  Data to test capa's code and rules.
  ☆46Updated last week
• KoreLogicSecurity / wmkick
  WMkick is a TCP protocol redirector/MITM tool that targets NTLM authentication message flows in WMI (135/tcp) and Powershell-Remoting/WSM…
  ☆41Updated 4 years ago
• microsoft / SysmonCommon
  The common parts of the Sysinternals Sysmon tool shared between the Windows and Linux versions.
  ☆65Updated 10 months ago
• elastic / package-registry
  Elastic Package Registry (EPR)
  ☆49Updated last week
• splunk / PPLinject
  Inject unsigned DLL into Protected Process Light (PPL)
  ☆29Updated 7 months ago
• fox-it / dissect.cobaltstrike
  Python library for dissecting and parsing Cobalt Strike related data such as Beacon payloads and Malleable C2 Profiles
  ☆180Updated 5 months ago
• OpenSCAP / oval-graph
  Understand OVAL results in a blink of an eye
  ☆35Updated 3 years ago
• 78ResearchLab / PoC
  ☆124Updated 3 years ago
• abhinavbom / clara
  Serverless, real-time, ClamAV+Yara scanning for your S3 Buckets
  ☆32Updated 5 months ago
• hfiref0x / AuthHashCalc
  Authenticode Hash Calculator for PE32/PE32+ files
  ☆119Updated 5 months ago