kolide / osquery-starter-kit
A starter-kit for a source-controlled, CLI-based osquery management workflow.
☆30Updated 6 years ago
Alternatives and similar repositories for osquery-starter-kit:
Users that are interested in osquery-starter-kit are comparing it to the libraries listed below
- Dockerfiles for containerized osquery☆13Updated 7 years ago
- [DEPRECATED] A quickstart demo for Kolide tools☆52Updated 6 years ago
- Example Express application for collecting data from the Stethoscope app☆14Updated 6 years ago
- Looks for GitHub org users without 2FA turned on☆9Updated 8 years ago
- ALPHA/WIP for OSquery configuration for Mac and Linux Operating Systems☆16Updated 7 years ago
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆53Updated 2 weeks ago
- Launchd daemon that reports major OSX modifications through growl☆16Updated 10 years ago
- Simple Docker-based quickstart for osquery, Fleet, and ELK stack☆63Updated last year
- Osquery Packs we use for customer security hardening☆12Updated 7 months ago
- Osquery Mangement Server☆114Updated 4 years ago
- Build Automated Machine Images for MISP☆28Updated last year
- ☆15Updated 5 years ago
- Deploy Kolide's Fleet into AWS using Terraform.☆15Updated 7 years ago
- first commit☆20Updated last year
- A python script to shift the timestamp on syslog data. Useful for forensicators combating time skew.☆20Updated 2 years ago
- Things to know when DFIR occurs near a vault deployment.☆43Updated 6 years ago
- An active domain name query tool to help keep track of domain name movements...☆15Updated 4 years ago
- Actionable analytics designed to combat threats based on MITRE's ATT&CK.☆22Updated 5 years ago
- Carving tool based in Radare2 & Yara☆16Updated 6 years ago
- Automated testing, generation & manipulation of #osquery packs☆72Updated 6 months ago
- ☆47Updated 10 years ago
- A python script to acquire multiple aws ec2 instances in a forensically sound-ish way☆38Updated 3 years ago
- Homographs: brutefind homographs within a font☆18Updated 8 years ago
- A modern CLI for Tenable.io written in Go☆14Updated 4 years ago
- D4 core software (server and sample sensor client)☆42Updated last year
- Stealth is a File Integrity scanner performing its work in a stealthy way.☆12Updated 6 years ago
- defendA Data Lake. A firehose pipeline to athena providing enrichment and normalization for security events☆16Updated 2 years ago
- ARDvark parses the Apple Remote Desktop (ARD) files to pull out application usage, user activity, and filesystem listings.☆35Updated last year
- splunk alert script to create resilient tickets☆10Updated 8 years ago
- Potiron - Normalize, Index and Visualize Network Capture☆85Updated 6 years ago