Alternatives and similar repositories for osctrl:

Users that are interested in osctrl are comparing it to the libraries listed below

• palantir / osquery-configuration
  A repository for using osquery for incident detection and response
  ☆847Updated 2 years ago
• chainguard-dev / osquery-defense-kit
  Production-ready detection & response queries for osquery
  ☆566Updated last week
• threathunters-io / laurel
  Transform Linux Audit logs for SIEM usage
  ☆763Updated 2 weeks ago
• teoseller / osquery-attck
  Mapping the MITRE ATT&CK Matrix with Osquery
  ☆793Updated last year
• SecurityBrewery / catalyst
  ⚡️ Catalyst is a self-hosted, open source incident response platform and ticket system that helps to automate alert handling and incident…
  ☆391Updated 3 weeks ago
• zercurity / zercurity
  Manage, monitor and improve your cyber security posture.
  ☆91Updated 2 years ago
• kolide / launcher
  Osquery launcher, autoupdater, and packager
  ☆522Updated this week
• trailofbits / osquery-extensions
  osquery extensions by Trail of Bits
  ☆264Updated 2 years ago
• idaholab / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆405Updated last week
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆457Updated this week
• defenxor / dsiem
  Security event correlation engine for ELK stack
  ☆439Updated 10 months ago
• Patrowl / PatrowlEngines
  PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
  ☆248Updated this week
• tenzir / threatbus
  🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
  ☆261Updated 2 years ago
• mwielgoszewski / doorman
  an osquery fleet manager
  ☆618Updated 2 years ago
• sttor / awesome-osquery
  Osquery Resources
  ☆60Updated 5 years ago
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆650Updated 3 weeks ago
• target / strelka
  Real-time, container-based file scanning at enterprise scale
  ☆919Updated 3 weeks ago
• MISP / x_old_misp_docker
  MISP Docker (XME edition)
  ☆282Updated last year
• Patrowl / PatrowlManager
  PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
  ☆632Updated last month
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆477Updated 4 months ago
• FoxIO-LLC / LogSlash
  A standard for reducing log volume without sacrificing analytical capability
  ☆204Updated 2 months ago
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆132Updated 8 months ago
• salesforce / hassh
  HASSH is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints…
  ☆540Updated last week
• spyre-project / spyre
  simple YARA-based IOC scanner
  ☆169Updated 2 months ago
• z1pti3 / jimi
  Jimi is an automation first no-code platform designed and developed originally for Security Orchestration and Response. Since its launch …
  ☆164Updated 10 months ago
• grapl-security / grapl
  Graph platform for Detection and Response
  ☆692Updated 2 years ago
• corelight / community-id-spec
  An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
  ☆178Updated 7 months ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆168Updated last month
• HASecuritySolutions / VulnWhisperer
  Create actionable data from your Vulnerability Scans
  ☆1,379Updated 2 years ago
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆171Updated last year