jmpsec / osctrlLinks
Fast and efficient osquery management
☆468Updated this week
Alternatives and similar repositories for osctrl
Users that are interested in osctrl are comparing it to the libraries listed below
Sorting:
- A repository for using osquery for incident detection and response☆867Updated last month
- Security event correlation engine for ELK stack☆446Updated last year
- Manage, monitor and improve your cyber security posture.☆93Updated 2 years ago
- Production-ready detection & response queries for osquery☆592Updated 2 months ago
- Osquery launcher, autoupdater, and packager☆534Updated this week
- Transform Linux Audit logs for SIEM usage☆798Updated last month
- Mapping the MITRE ATT&CK Matrix with Osquery☆801Updated 2 years ago
- Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search☆469Updated this week
- Osquery Resources☆62Updated 6 years ago
- osquery extensions by Trail of Bits☆266Updated 2 years ago
- PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform☆639Updated last week
- ⚡️ Catalyst is a self-hosted, open source incident response platform and ticket system that helps to automate alert handling and incident…☆483Updated 3 weeks ago
- Real-time, container-based file scanning at enterprise scale☆955Updated this week
- PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform☆248Updated 3 weeks ago
- Open source endpoint agent providing host information to Zeek. [v2]☆86Updated last month
- Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…☆188Updated 3 weeks ago
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆435Updated last week
- A Linux Auditd rule set mapped to MITRE's Attack Framework☆812Updated 5 years ago
- Wazuh - Ruleset☆485Updated last year
- Scirius is a web application for Suricata ruleset management and threat hunting.☆666Updated last month
- 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.☆264Updated 2 years ago
- A standard for reducing log volume without sacrificing analytical capability☆210Updated 8 months ago
- Jimi is an automation first no-code platform designed and developed originally for Security Orchestration and Response. Since its launch …☆167Updated last year
- an osquery fleet manager☆618Updated 2 years ago
- Documentation of Cortex☆174Updated 2 years ago
- A utility to safely generate malicious network traffic patterns and evaluate controls.☆1,336Updated last year
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)☆107Updated last year
- HASSH is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints…☆541Updated 5 months ago
- Cisco Orbital - Osquery queries by Talos☆135Updated last year
- An open standard for hashing network flows into identifiers, a.k.a "Community IDs".☆187Updated last year