Alternatives and similar repositories for osquery-hids:

Users that are interested in osquery-hids are comparing it to the libraries listed below

• uber-archive / usb2fac
  Enabling 2fac confirmation for newly connected USB devices
  ☆45Updated 8 years ago
• magoo / Vault-for-Incident-Responders
  Things to know when DFIR occurs near a vault deployment.
  ☆43Updated 6 years ago
• jedisct1 / massresolver
  Mass DNS resolution tool
  ☆36Updated 4 years ago
• yolothreat / utilitybelt
  A Python library for being a CND Batman....
  ☆35Updated 9 years ago
• iSECPartners / scout
  AWS EC2 and S3 Security Auditing Tool
  ☆41Updated 11 years ago
• jgamblin / dnsrecon-for-slack
  Custom slash command to do a basic dnsrecon from within Slack
  ☆12Updated 8 years ago
• jgamblin / ipinfo-for-slack
  Custom slash command to do ipinfo.io lookups from within Slack
  ☆10Updated 8 years ago
• sroberts / responding-at-scale-with-osquery
  Using osquery for Mass Incident Detection & Response
  ☆19Updated 8 years ago
• anthonykasza / snapshooter
  It's like a polaroid, but for domains
  ☆24Updated 10 years ago
• kolide / kolide-quickstart
  [DEPRECATED] A quickstart demo for Kolide tools
  ☆52Updated 6 years ago
• kf0jvt / deez_factors
  Looks for GitHub org users without 2FA turned on
  ☆9Updated 8 years ago
• da667 / Autosuricata
  first commit
  ☆20Updated last year
• ThreatResponse / aws_ir_plugins
  Core incident handling plugins for aws_ir cli, incident pony, and more.
  ☆21Updated 6 years ago
• StamusNetworks / ansible-misp
  Ansible playbook to install Malware Information Sharing Platform (MISP)
  ☆17Updated 10 years ago
• gamelinux / activedns
  An active domain name query tool to help keep track of domain name movements...
  ☆15Updated 4 years ago
• Xen0ph0n / MIDAS
  Metadata Inspection Database Alerting System
  ☆42Updated 11 years ago
• quarkslab / irma-ansible-old
  IRMA ansible
  ☆24Updated 8 years ago
• kolide / osquery-starter-kit
  A starter-kit for a source-controlled, CLI-based osquery management workflow.
  ☆30Updated 6 years ago
• jgamblin / hostlookup-for-slack
  Custom slash command to find all a domains A records from within Slack
  ☆11Updated 8 years ago
• shirkdog / hunter-nsm
  Simple install script for Suricata/Zeek with JSON logging on FreeBSD
  ☆18Updated 2 weeks ago
• Securosis / SecuritySquirrel
  ☆32Updated 11 years ago
• sec51 / clamav-yara
  Converts the Clamav Virus Database definitions to YARA rules [GOLANG]
  ☆52Updated 4 years ago
• tribalchicken / volatility-filevault2
  Volatility plugin to extract FileVault 2 VMK's
  ☆50Updated 3 years ago
• ivanlei / threatbutt
  Threatbutt python client and Maltego transforms
  ☆51Updated 10 months ago
• cve-search / CVE-Search-MT
  CVE-Search Management Tools - Tools that might be useful for management purposes
  ☆21Updated 9 years ago
• blacktop / docker-yara
  Yara Dockerfile
  ☆50Updated 2 years ago
• docker-training / security-workshop
  Repository for Security Workshop content
  ☆20Updated 7 years ago
• shellntel-acct / websocket_egress
  Websocket based egress tester
  ☆20Updated 8 years ago
• xme / mime2vt
  Unpack MIME attachments from a file and check them against virustotal.com
  ☆44Updated 9 years ago
• hatching / tracy
  tracy - a system call tracer and injector. Find us in #tracy on irc.freenode.net
  ☆33Updated last year