Alternatives and similar repositories for osquery-starter-kit:

Users that are interested in osquery-starter-kit are comparing it to the libraries listed below

• kolide / docker-osquery
  Dockerfiles for containerized osquery
  ☆13Updated 7 years ago
• kolide / kolide-quickstart
  [DEPRECATED] A quickstart demo for Kolide tools
  ☆52Updated 6 years ago
• Netflix-Skunkworks / stethoscope-examples
  Example Express application for collecting data from the Stethoscope app
  ☆14Updated 6 years ago
• kf0jvt / deez_factors
  Looks for GitHub org users without 2FA turned on
  ☆9Updated 8 years ago
• GSA / laptop-management
  ALPHA/WIP for OSquery configuration for Mac and Linux Operating Systems
  ☆16Updated 7 years ago
• juju4 / ansible-MISP
  ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing
  ☆53Updated 2 weeks ago
• magoo / osquery-hids
  Launchd daemon that reports major OSX modifications through growl
  ☆16Updated 10 years ago
• mikermcneil / fleet-osquery-in-a-box
  Simple Docker-based quickstart for osquery, Fleet, and ELK stack
  ☆63Updated last year
• CyberSift / OSQUERY-PACKS
  Osquery Packs we use for customer security hardening
  ☆12Updated 7 months ago
• OktaSecurityLabs / sgt
  Osquery Mangement Server
  ☆114Updated 4 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• deeso / fleet-deployment
  ☆15Updated 5 years ago
• davidrecordon / terraform-aws-kolide-fleet
  Deploy Kolide's Fleet into AWS using Terraform.
  ☆15Updated 7 years ago
• da667 / Autosuricata
  first commit
  ☆20Updated last year
• philhagen / timeshift
  A python script to shift the timestamp on syslog data. Useful for forensicators combating time skew.
  ☆20Updated 2 years ago
• magoo / Vault-for-Incident-Responders
  Things to know when DFIR occurs near a vault deployment.
  ☆43Updated 6 years ago
• gamelinux / activedns
  An active domain name query tool to help keep track of domain name movements...
  ☆15Updated 4 years ago
• atc-project / atc-mitigation
  Actionable analytics designed to combat threats based on MITRE's ATT&CK.
  ☆22Updated 5 years ago
• wolfvan / YaraRET
  Carving tool based in Radare2 & Yara
  ☆16Updated 6 years ago
• chainguard-dev / osqtool
  Automated testing, generation & manipulation of #osquery packs
  ☆72Updated 6 months ago
• aabed / dockpot
  ☆47Updated 10 years ago
• telekom-security / acquire-aws-ec2
  A python script to acquire multiple aws ec2 instances in a forensically sound-ish way
  ☆38Updated 3 years ago
• dutchcoders / homographs
  Homographs: brutefind homographs within a font
  ☆18Updated 8 years ago
• whereiskurt / tiogo
  A modern CLI for Tenable.io written in Go
  ☆14Updated 4 years ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• fbb-git / stealth
  Stealth is a File Integrity scanner performing its work in a stealthy way.
  ☆12Updated 6 years ago
• 0xdefendA / defenda-data-lake
  defendA Data Lake. A firehose pipeline to athena providing enrichment and normalization for security events
  ☆16Updated 2 years ago
• mandiant / ARDvark
  ARDvark parses the Apple Remote Desktop (ARD) files to pull out application usage, user activity, and filesystem listings.
  ☆35Updated last year
• ministryofpromise / splunk2resilient
  splunk alert script to create resilient tickets
  ☆10Updated 8 years ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆85Updated 6 years ago