Alternatives and similar repositories for osctrl

Users that are interested in osctrl are comparing it to the libraries listed below

• kolide / launcher
  Osquery launcher, autoupdater, and packager
  ☆536Updated this week
• palantir / osquery-configuration
  A repository for using osquery for incident detection and response
  ☆880Updated 4 months ago
• zercurity / zercurity
  Manage, monitor and improve your cyber security posture.
  ☆93Updated 2 years ago
• defenxor / dsiem
  Security event correlation engine for ELK stack
  ☆447Updated last year
• sttor / awesome-osquery
  Osquery Resources
  ☆63Updated 6 years ago
• chainguard-dev / osquery-defense-kit
  Production-ready detection & response queries for osquery
  ☆599Updated 5 months ago
• trailofbits / osquery-extensions
  osquery extensions by Trail of Bits
  ☆269Updated 2 years ago
• teoseller / osquery-attck
  Mapping the MITRE ATT&CK Matrix with Osquery
  ☆808Updated 2 years ago
• SecurityBrewery / catalyst
  ⚡️ Catalyst is a self-hosted, open source incident response platform and ticket system that helps to automate alert handling and incident…
  ☆507Updated this week
• threathunters-io / laurel
  Transform Linux Audit logs for SIEM usage
  ☆811Updated last month
• Patrowl / PatrowlEngines
  PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
  ☆247Updated 3 weeks ago
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆481Updated 2 weeks ago
• Patrowl / PatrowlManager
  PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
  ☆637Updated 3 weeks ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆90Updated last week
• z1pti3 / jimi
  Jimi is an automation first no-code platform designed and developed originally for Security Orchestration and Response. Since its launch …
  ☆169Updated last year
• idaholab / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆449Updated last week
• tenzir / threatbus
  🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
  ☆269Updated 2 years ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆191Updated 4 months ago
• FoxIO-LLC / LogSlash
  A standard for reducing log volume without sacrificing analytical capability
  ☆214Updated 11 months ago
• target / strelka
  Real-time, container-based file scanning at enterprise scale
  ☆973Updated 3 weeks ago
• wazuh / wazuh-ruleset
  Wazuh - Ruleset
  ☆502Updated last year
• TheHive-Project / CortexDocs
  Documentation of Cortex
  ☆174Updated 2 years ago
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆675Updated last month
• mwielgoszewski / doorman
  an osquery fleet manager
  ☆620Updated 3 years ago
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆136Updated last year
• OpenSCAP / scap-workbench
  SCAP Scanner And Tailoring Graphical User Interface
  ☆233Updated last year
• tenzir / tenzir
  Tenzir is the data pipeline engine for security teams.
  ☆719Updated this week
• CptOfEvilMinions / FleetDM-Automation
  ☆55Updated 3 years ago
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆289Updated 3 months ago
• ccdcoe / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)
  ☆108Updated last year