fmanco / osquery-packs

Related projects ⓘ

Alternatives and complementary repositories for osquery-packs

• CyberSift / OSQUERY-PACKS
  Osquery Packs we use for customer security hardening
  ☆12Updated last month
• 0xdefendA / defenda-data-lake
  defendA Data Lake. A firehose pipeline to athena providing enrichment and normalization for security events
  ☆16Updated last year
• sttor / awesome-osquery
  Osquery Resources
  ☆59Updated 5 years ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆52Updated last week
• chainguard-dev / osqtool
  Automated testing, generation & manipulation of #osquery packs
  ☆70Updated last month
• OktaSecurityLabs / sgt
  Osquery Mangement Server
  ☆114Updated 4 years ago
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆123Updated 2 months ago
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆95Updated 4 years ago
• opendxl / opendxl-environment
  Pre-configured environment that supports the development and running of OpenDXL solutions
  ☆13Updated 3 years ago
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆34Updated 2 weeks ago
• jandre / brosquery
  module for osquery to load Bro logs into tables
  ☆28Updated 9 years ago
• ReconInfoSec / rhq
  Recon Hunt Queries
  ☆75Updated 3 years ago
• tuckner / automation-capability-matrix
  A tool that allows you to document and assess any security automation in your SOC
  ☆41Updated 3 weeks ago
• sttor / osquery-wazuh-response
  Active Response plugin. Osquery to execute wazuh/ossec active response plugins. You can write your own plugins, easy to plug
  ☆9Updated 4 years ago
• CrowdStrike / falcon-integration-gateway
  Falcon Integration Gateway (FIG)
  ☆18Updated last month
• jshlbrd / detection-engineering-pocket-guide
  pocket guide for core detection engineering concepts
  ☆27Updated last year
• regit / suriwire
  Wireshark plugin to display Suricata analysis info
  ☆91Updated 3 years ago
• AbGuthrie / goquery
  Provide a shell like interface by utilizing osquery's distributed API
  ☆80Updated 4 years ago
• 0xThiebaut / sigmai
  Import specific data sources into the Sigma generic and open signature format.
  ☆77Updated 2 years ago
• kolide / osquery-starter-kit
  A starter-kit for a source-controlled, CLI-based osquery management workflow.
  ☆30Updated 6 years ago
• gyrospectre / squyre
  Security Alert Decoration
  ☆26Updated this week
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆30Updated last year
• juju4 / ansible-zeek
  setup zeek, previously Bro IDS
  ☆17Updated 3 weeks ago
• MISP / misp-cloud
  misp-cloud - Cloud-ready images of MISP
  ☆72Updated 2 years ago
• Loginsoft-LLC / threat-detection-rules
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆50Updated 2 years ago
• Permiso-io-tools / cloudtail
  ☆24Updated 2 weeks ago
• quadrantsec / sagan-rules
  ☆28Updated last week
• atc-project / atc-mitigation
  Actionable analytics designed to combat threats based on MITRE's ATT&CK.
  ☆22Updated 5 years ago