Alternatives and similar repositories for osquery-packs

Users that are interested in osquery-packs are comparing it to the libraries listed below

• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆136Updated last year
• bestpractical / rtir
  ☆143Updated 2 months ago
• OktaSecurityLabs / sgt
  Osquery Mangement Server
  ☆115Updated 5 years ago
• spotify / terraform-google-grr
  A Terraform module for GRR: the distributed incident forensics and response framework
  ☆52Updated 5 years ago
• MISP / misp-cloud
  misp-cloud - Cloud-ready images of MISP
  ☆74Updated 3 years ago
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 5 years ago
• mikermcneil / fleet-osquery-in-a-box
  Simple Docker-based quickstart for osquery, Fleet, and ELK stack
  ☆64Updated 2 years ago
• ThreatResponse / margaritashotgun
  Remote Memory Acquisition Tool
  ☆252Updated 5 years ago
• ReconInfoSec / rhq
  Recon Hunt Queries
  ☆79Updated 4 years ago
• sttor / awesome-osquery
  Osquery Resources
  ☆63Updated 6 years ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆109Updated 7 years ago
• TheHive-Project / Hippocampe
  Threat Feed Aggregation, Made Easy
  ☆169Updated 5 years ago
• CISecurity / ControlsAssessmentSpecification
  Controls Assessment Specification
  ☆70Updated 10 months ago
• trailofbits / osquery-extensions
  osquery extensions by Trail of Bits
  ☆269Updated 2 years ago
• TheHive-Project / Synapse
  Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform
  ☆71Updated 2 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆57Updated 4 years ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆56Updated this week
• elastic / dorothy
  ☆192Updated last week
• PaloAltoNetworks / minemeld-webui
  WebUI of MineMeld
  ☆43Updated 2 years ago
• weslambert / securityonion-misp
  ☆37Updated 5 years ago
• amuehlem / MISP-RPM
  RPM packages for MISP
  ☆39Updated 3 weeks ago
• haidermdost / Threat-Detection-Maturity-Framework
  ☆18Updated 4 years ago
• markov2 / taranis3
  Taranis
  ☆64Updated 4 years ago
• socprime / soc_workflow_app_ce
  SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…
  ☆94Updated 3 years ago
• Patrowl / PatrowlEngines
  PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
  ☆247Updated 3 weeks ago
• 0xdefendA / defenda-data-lake
  defendA Data Lake. A firehose pipeline to athena providing enrichment and normalization for security events
  ☆17Updated 2 years ago
• tylabs / dovehawk
  Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
  ☆122Updated 4 years ago
• sevickson / osquery_tables_graph
  Repository containing Jupyter Notebooks for working with OSQuery tables and data
  ☆17Updated 5 years ago
• 0xThiebaut / sigmai
  Import specific data sources into the Sigma generic and open signature format.
  ☆79Updated 3 years ago
• counteractive / security-controls
  ☆49Updated 2 years ago