module for osquery to load Bro logs into tables
☆28Apr 28, 2015Updated 11 years ago
Alternatives and similar repositories for brosquery
Users that are interested in brosquery are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Extensions for Zeek's Intelligence Framework.☆11Mar 1, 2022Updated 4 years ago
- (OBSOLETE) Plugins for Bro☆53Sep 13, 2017Updated 8 years ago
- Bro/Zeek integration with osquery☆94Nov 2, 2020Updated 5 years ago
- Dockerfiles for NSM tools☆84Apr 14, 2017Updated 9 years ago
- Zeek package to generate a SMB client fingerprint☆27May 5, 2020Updated 6 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- The Auditd Framework logs and applies security policy to linux auditd data☆15Jan 26, 2018Updated 8 years ago
- Full packet capture with flow cutoff, rotation, and compression☆15Sep 18, 2018Updated 7 years ago
- Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files☆44May 9, 2024Updated 2 years ago
- Bro scripts written by CrowdStrike Services☆150May 3, 2021Updated 5 years ago
- ☆16Mar 1, 2018Updated 8 years ago
- Zeek Analysis Tools (ZAT): Processing and analysis of Zeek network data with Pandas, scikit-learn, Kafka and Spark☆456Mar 19, 2026Updated 2 months ago
- Script for generating Bro intel files from pdf or html reports☆76Dec 7, 2015Updated 10 years ago
- A LLVM-based toolchain for Linux designed to build a portable osquery☆41Apr 8, 2026Updated last month
- Low budget VirusTotal Intelligence Cosplay☆20Jan 6, 2022Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Site for IWS book content☆17Oct 28, 2018Updated 7 years ago
- Remotely collect linux live forensics artifacts.☆14Jul 8, 2022Updated 3 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Jul 23, 2015Updated 10 years ago
- A package manager for Zeek☆46Mar 5, 2026Updated 2 months ago
- ☆11Sep 26, 2019Updated 6 years ago
- Bro scripts to be shared with the community☆110Mar 6, 2013Updated 13 years ago
- Provide a shell like interface by utilizing osquery's distributed API☆83Jun 24, 2020Updated 5 years ago
- ALPHA/WIP for OSquery configuration for Mac and Linux Operating Systems☆16Jan 9, 2018Updated 8 years ago
- No elephant flows - flow shunting for Arista switches using EOS API☆27Apr 27, 2021Updated 5 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- LEGACY use https://github.com/mephux/kolide -- Envdb - Ask your environment questions with osquery.☆513May 8, 2016Updated 10 years ago
- a signature verifying command interpreter☆11Mar 8, 2026Updated 2 months ago
- Bro Live! A Bro training/learning environment.☆14Jul 21, 2015Updated 10 years ago
- This python scripts can calculate the WHOIS Similarity Distance between two given domains.☆29Dec 8, 2022Updated 3 years ago
- Cross Namespace Nginx Ingress Controller setup and a working demo☆16Jun 21, 2018Updated 7 years ago
- Analysis related to article on FOIA Online Database.☆11Feb 2, 2017Updated 9 years ago
- integrating bro into yara☆33Dec 9, 2014Updated 11 years ago
- Haskell parser for the REIL intermediate language (currently a work-in-progress)☆11Jan 12, 2018Updated 8 years ago
- Flow-based SSH intrusion detection system (NfSen plugin)☆41Dec 10, 2015Updated 10 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Vagrant files for a Ganeti tutorial and/or Ganeti testing environment☆28Feb 28, 2014Updated 12 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Aug 3, 2019Updated 6 years ago
- Logstash configuration files for analyzing various types of logs☆24Dec 9, 2016Updated 9 years ago
- Use AMQP broker to send or receive messages via FluentD☆15Jul 12, 2020Updated 5 years ago
- Ansible role to manage omdistro and check_mk☆10Jun 30, 2017Updated 8 years ago
- Automating simple report creating of threat intelligence using ChatGPT and Greynoise API.☆10Oct 3, 2023Updated 2 years ago
- an osquery fleet manager☆623Dec 8, 2022Updated 3 years ago