jmpsec / osctrl
Fast and efficient osquery management
☆386Updated this week
Related projects ⓘ
Alternatives and complementary repositories for osctrl
- A repository for using osquery for incident detection and response☆824Updated 2 years ago
- Mapping the MITRE ATT&CK Matrix with Osquery☆776Updated last year
- osquery extensions by Trail of Bits☆262Updated last year
- Osquery launcher, autoupdater, and packager☆506Updated this week
- Transform Linux Audit logs for SIEM usage☆707Updated last week
- Osquery Resources☆59Updated 5 years ago
- Security event correlation engine for ELK stack☆434Updated 4 months ago
- Production-ready detection & response queries for osquery☆523Updated this week
- an osquery fleet manager☆620Updated last year
- Documentation of Cortex☆170Updated last year
- Manage, monitor and improve your cyber security posture.☆87Updated last year
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆358Updated this week
- Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search☆429Updated this week
- PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform☆244Updated this week
- Go bindings for osquery☆387Updated last month
- DFIRTrack - The Incident Response Tracking Application☆482Updated 2 months ago
- PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform☆625Updated last week
- 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.☆258Updated last year
- Real-time, container-based file scanning at enterprise scale☆878Updated 3 weeks ago
- Automated deployment scripts for the RockNSM network hunting distribution.☆446Updated last year
- A flexible control server for osquery fleets☆1,103Updated 3 years ago
- A Linux Auditd rule set mapped to MITRE's Attack Framework☆778Updated 4 years ago
- A framework for orchestrating forensic collection, processing and data export☆297Updated last week
- Scirius is a web application for Suricata ruleset management and threat hunting.☆633Updated 3 weeks ago
- HASSH is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints…☆532Updated 7 months ago
- Cortex Analyzers Repository☆433Updated this week
- Provide a shell like interface by utilizing osquery's distributed API☆80Updated 4 years ago
- PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform☆147Updated 2 years ago
- Cisco Orbital - Osquery queries by Talos☆122Updated 2 months ago
- Documentation of TheHive☆392Updated last year