Alternatives and similar repositories for endpoint-package

Users that are interested in endpoint-package are comparing it to the libraries listed below

• elastic / security-docs
  Elastic Security Documentation
  ☆87Updated this week
• elastic / endpoint
  ☆40Updated 5 months ago
• elastic / elastic-agent
  Elastic Agent - single, unified way to add monitoring for logs, metrics, and other types of data to a host.
  ☆194Updated this week
• yasindce1998 / KubeDagger
  Kubernetes offensive framework built in eBPF
  ☆38Updated 2 years ago
• google / mandiant-ti-client
  ☆17Updated last year
• snyk / leaky-vessels-dynamic-detector
  Leaky Vessels Dynamic Detector
  ☆103Updated 4 months ago
• mitre / access
  A CALDERA plugin
  ☆25Updated 3 months ago
• elastic / elastic-integration-corpus-generator-tool
  Command line tool used for generating events corpus dynamically given a specific integration
  ☆23Updated 6 months ago
• swimlane / pyattck-data
  This repository contains generated contextual data utilized by pyattck.
  ☆19Updated 5 months ago
• praetorian-inc / konstellation
  Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.
  ☆28Updated last month
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆87Updated 4 months ago
• OTRF / OSSEM-DD
  OSSEM Data Dictionaries
  ☆62Updated 7 months ago
• InQuest / yara-rules-vt
  Collection of YARA rules designed for usage through VirusTotal.com.
  ☆76Updated last year
• Neo23x0 / Loki2
  LOKI2 - Simple IOC and YARA Scanner
  ☆102Updated 2 months ago
• elastic / labs-releases
  Elastic Security Labs releases
  ☆80Updated last month
• malienist / vovk
  Vovk is framework of tools that include a WinDbg extension that generates in-depth YARA rules for malware.
  ☆23Updated last year
• MSAdministrator / goattck
  A Golang CLI for the MITRE ATT&CK Framework
  ☆13Updated 4 months ago
• CybercentreCanada / assemblyline_client
  Python client for Assemblyline 3 and 4 / Client python pour AssemblyLine 3 and 4
  ☆23Updated 2 weeks ago
• fkie-cad / yapscan
  Yapscan is a YAra based Process SCANner, aimed at giving more control about what to scan and giving detailed reports on matches.
  ☆61Updated 2 years ago
• fox-it / cisco-ios-xe-implant-detection
  Cisco IOS XE implant scanning & detection (CVE-2023-20198, CVE-2023-20273)
  ☆39Updated last year
• mitre / sandcat
  A CALDERA plugin
  ☆69Updated last week
• pathtofile / commandline_cloaking
  A collection of projects demonstrating various commandline cloaking techniques on Linux
  ☆59Updated 3 years ago
• elastic / elastic-package
  elastic-package - Command line tool for developing Elastic Integrations
  ☆63Updated this week
• restkhz / CutterMCP-plus
  MCP Server for Cutter
  ☆34Updated 3 weeks ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆113Updated this week
• abhinavbom / clara
  Serverless, real-time, ClamAV+Yara scanning for your S3 Buckets
  ☆31Updated 2 months ago
• vmware-samples / tau-research
  The project will serve as a central repository for VMware Threat Analysis Unit (TAU) to share threat intelligence with the security commu…
  ☆17Updated 2 years ago
• fox-it / dissect.cobaltstrike
  Python library for dissecting and parsing Cobalt Strike related data such as Beacon payloads and Malleable C2 Profiles
  ☆175Updated 2 months ago
• t-tani / defender2yara
  Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules
  ☆119Updated this week
• intelforge / tmc
  Threat Mapping Catalogue
  ☆17Updated 4 years ago