jmpsec / osctrlLinks
Fast and efficient osquery management
☆451Updated 3 weeks ago
Alternatives and similar repositories for osctrl
Users that are interested in osctrl are comparing it to the libraries listed below
Sorting:
- A repository for using osquery for incident detection and response☆853Updated 2 years ago
- Manage, monitor and improve your cyber security posture.☆90Updated 2 years ago
- Mapping the MITRE ATT&CK Matrix with Osquery☆796Updated 2 years ago
- Osquery launcher, autoupdater, and packager☆528Updated this week
- Production-ready detection & response queries for osquery☆574Updated last week
- Transform Linux Audit logs for SIEM usage☆773Updated last month
- ⚡️ Catalyst is a self-hosted, open source incident response platform and ticket system that helps to automate alert handling and incident…☆406Updated this week
- Real-time, container-based file scanning at enterprise scale☆928Updated last week
- Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search☆459Updated 2 weeks ago
- osquery extensions by Trail of Bits☆265Updated 2 years ago
- Security event correlation engine for ELK stack☆440Updated last year
- an osquery fleet manager☆618Updated 2 years ago
- A standard for reducing log volume without sacrificing analytical capability☆205Updated 4 months ago
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆415Updated this week
- PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform☆635Updated this week
- Scirius is a web application for Suricata ruleset management and threat hunting.☆654Updated this week
- A Linux Auditd rule set mapped to MITRE's Attack Framework☆795Updated 4 years ago
- 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.☆263Updated 2 years ago
- PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform☆248Updated this week
- An open standard for hashing network flows into identifiers, a.k.a "Community IDs".☆180Updated 9 months ago
- Documentation of Cortex☆174Updated last year
- Osquery Resources☆60Updated 5 years ago
- Open source endpoint agent providing host information to Zeek. [v2]☆83Updated last week
- A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…☆216Updated last week
- MISP Docker (XME edition)☆282Updated last year
- Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…☆175Updated 2 months ago
- A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.☆871Updated 9 months ago
- Golang library that implements a sigma log rule parser and match engine.☆96Updated 11 months ago
- Sublime rules for email attack detection, prevention, and threat hunting.☆311Updated this week
- Built-in Panther detection rules and policies☆397Updated this week