kolide / fleet
A flexible control server for osquery fleets
☆1,101Updated 3 years ago
Related projects: ⓘ
- Osquery launcher, autoupdater, and packager☆503Updated this week
- A repository for using osquery for incident detection and response☆814Updated 2 years ago
- an osquery fleet manager☆618Updated last year
- Zentral is a high-visibility platform for controlling Apple endpoints in enterprises. It brings great observability to IT and makes track…☆745Updated this week
- Go bindings for osquery☆384Updated last week
- ☆888Updated this week
- (DEPRECATED) Diffy is a triage tool used during cloud-centric security incidents, to help digital forensics and incident response (DFIR)…☆633Updated 8 months ago
- osquery extensions by Trail of Bits☆259Updated last year
- Python bindings for osquery's Thrift API☆292Updated last month
- go-audit is an alternative to the auditd daemon that ships with many distros☆1,570Updated 2 weeks ago
- Fast and efficient osquery management☆371Updated this week
- A multi-platform binary whitelisting solution☆452Updated 2 years ago
- Mapping the MITRE ATT&CK Matrix with Osquery☆769Updated last year
- A tool to help forensicate offline docker acquisitions☆522Updated last year
- A desktop application that checks security-related settings and makes recommendations for improvements without requiring central device m…☆456Updated last year
- A Linux Auditd rule set mapped to MITRE's Attack Framework☆778Updated 4 years ago
- StreamAlert is a serverless, realtime data analysis framework which empowers you to ingest, analyze, and alert on data from any environme…☆2,851Updated 10 months ago
- Graph platform for Detection and Response☆687Updated last year
- Create actionable data from your Vulnerability Scans☆1,352Updated last year
- Advanced Honeypot framework.☆1,216Updated 11 months ago
- BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.☆1,404Updated 9 months ago
- Hubble is a modular, open-source security compliance framework. The project provides on-demand profile-based auditing, real-time security…☆380Updated last year
- uber's ssh certificate pam module☆844Updated last year
- A curated collection of awesome resources for the zero-trust security model.☆727Updated last year
- Real-time, container-based file scanning at enterprise scale☆857Updated 2 weeks ago
- ☆547Updated this week
- DevSec Linux Baseline - InSpec Profile☆776Updated 3 weeks ago
- ☆284Updated this week
- Production-ready detection & response queries for osquery☆516Updated 3 weeks ago
- Automated deployment scripts for the RockNSM network hunting distribution.☆446Updated last year