Alternatives and similar repositories for osquery-hids

Users that are interested in osquery-hids are comparing it to the libraries listed below

• salesforce / threatshell
  ☆64Updated 3 years ago
• yolothreat / utilitybelt
  A Python library for being a CND Batman....
  ☆35Updated 9 years ago
• exp0se / bro-intel-generator
  Script for generating Bro intel files from pdf or html reports
  ☆77Updated 9 years ago
• kf0jvt / osq_simulator
  ☆14Updated 9 years ago
• open-nsm / ContainNSM
  Dockerfiles for NSM tools
  ☆84Updated 8 years ago
• BechtelCIRT / beholder
  Beholder is a shell script which installs and configures essentials to peer into your network activity.
  ☆19Updated 8 years ago
• hillar / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Bro, Moloch
  ☆61Updated 8 years ago
• OktaSecurityLabs / sgt
  Osquery Mangement Server
  ☆114Updated 5 years ago
• hadojae / redonion
  **BETA** A simple buildscript for network security monitoring on RHEL/CentOS
  ☆31Updated 8 years ago
• jandre / brosquery
  module for osquery to load Bro logs into tables
  ☆28Updated 10 years ago
• sroberts / hubot-vtr-scripts
  Scripts for making Hubot a CND Sidekick
  ☆59Updated 9 years ago
• jheise / threatcmd
  Cli interface to threatcrowd.org
  ☆19Updated 8 years ago
• fox-it / bro-scripts
  Bro-IDS scripts
  ☆50Updated 8 years ago
• xme / mime2vt
  Unpack MIME attachments from a file and check them against virustotal.com
  ☆44Updated 9 years ago
• xme / misp-docker
  Docker container for MISP
  ☆96Updated 7 years ago
• sroberts / responding-at-scale-with-osquery
  Using osquery for Mass Incident Detection & Response
  ☆19Updated 9 years ago
• anthonykasza / snapshooter
  It's like a polaroid, but for domains
  ☆24Updated 10 years ago
• jipegit / IRNotes
  Some IR notes
  ☆73Updated 9 years ago
• bostonlink / cuckooforcanari
  Cuckoo Sandbox Local Maltego Transforms Project
  ☆49Updated 11 years ago
• vmware-archive / tic
  Bit9 + Carbon Black Threat Intelligence
  ☆81Updated 9 years ago
• jeffbryner / pyioc
  Python tools for IOC (Indicator of Compromise) handling
  ☆96Updated 3 years ago
• MITRECND / yaraprocessor
  Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.
  ☆97Updated 10 years ago
• g-clef / KafkaLogger
  Logging plugin to bro to send logs to a Kafka broker
  ☆20Updated 7 years ago
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 4 years ago
• Xen0ph0n / MIDAS
  Metadata Inspection Database Alerting System
  ☆42Updated 12 years ago
• magoo / Vault-for-Incident-Responders
  Things to know when DFIR occurs near a vault deployment.
  ☆43Updated 7 years ago
• jonschipp / mal-dnssearch
  Compare multiple log formats against malware reputation lists.
  ☆88Updated 8 years ago
• vortessence / vortessence
  Automated memory forensics analysis
  ☆33Updated 6 years ago
• r3comp1le / VT-Hunter
  Manage VT Alerts
  ☆62Updated 8 years ago
• Yelp / amira
  AMIRA: Automated Malware Incident Response & Analysis
  ☆151Updated 7 months ago