Alternatives and similar repositories for osquery-hids

Users that are interested in osquery-hids are comparing it to the libraries listed below

• uber-archive / usb2fac
  Enabling 2fac confirmation for newly connected USB devices
  ☆45Updated 8 years ago
• magoo / Vault-for-Incident-Responders
  Things to know when DFIR occurs near a vault deployment.
  ☆43Updated 7 years ago
• kolide / kolide-quickstart
  [DEPRECATED] A quickstart demo for Kolide tools
  ☆52Updated 7 years ago
• jedisct1 / massresolver
  Mass DNS resolution tool
  ☆37Updated 4 years ago
• StamusNetworks / ansible-misp
  Ansible playbook to install Malware Information Sharing Platform (MISP)
  ☆17Updated 10 years ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆88Updated 6 years ago
• da667 / Autosuricata
  first commit
  ☆20Updated last year
• yolothreat / utilitybelt
  A Python library for being a CND Batman....
  ☆35Updated 9 years ago
• anthonykasza / snapshooter
  It's like a polaroid, but for domains
  ☆24Updated 10 years ago
• gamelinux / activedns
  An active domain name query tool to help keep track of domain name movements...
  ☆15Updated 4 years ago
• Security-Onion-Solutions / securityonion-setup
  ☆36Updated 4 years ago
• Security-Onion-Solutions / securityonion-bro-scripts
  ☆24Updated 5 years ago
• Xen0ph0n / MIDAS
  Metadata Inspection Database Alerting System
  ☆42Updated 11 years ago
• kf0jvt / deez_factors
  Looks for GitHub org users without 2FA turned on
  ☆9Updated 8 years ago
• ThreatResponse / aws_ir_plugins
  Core incident handling plugins for aws_ir cli, incident pony, and more.
  ☆21Updated 7 years ago
• sroberts / responding-at-scale-with-osquery
  Using osquery for Mass Incident Detection & Response
  ☆19Updated 9 years ago
• sroberts / hubot-vtr-scripts
  Scripts for making Hubot a CND Sidekick
  ☆59Updated 9 years ago
• blacktop / docker-yara
  Yara Dockerfile
  ☆50Updated 2 years ago
• OktaSecurityLabs / sgt
  Osquery Mangement Server
  ☆114Updated 4 years ago
• jandre / brosquery
  module for osquery to load Bro logs into tables
  ☆28Updated 10 years ago
• cve-search / CVE-Search-MT
  CVE-Search Management Tools - Tools that might be useful for management purposes
  ☆21Updated 9 years ago
• jgamblin / ipinfo-for-slack
  Custom slash command to do ipinfo.io lookups from within Slack
  ☆11Updated 9 years ago
• quarkslab / irma-ansible-old
  IRMA ansible
  ☆24Updated 8 years ago
• shirkdog / hunter-nsm
  Simple install script for Suricata/Zeek with JSON logging on FreeBSD
  ☆18Updated 3 months ago
• kost / docker-cowrie
  A Docker container for Cowrie - SSH honeypot based on kippo
  ☆10Updated 10 years ago
• kolide / osquery-starter-kit
  A starter-kit for a source-controlled, CLI-based osquery management workflow.
  ☆30Updated 7 years ago
• iSECPartners / scout
  AWS EC2 and S3 Security Auditing Tool
  ☆41Updated 11 years ago
• ThreatResponse / ThreatPrep
  Python module for evaluation of AWS account best practices around incident handling readieness.
  ☆55Updated 5 years ago
• jgamblin / hostlookup-for-slack
  Custom slash command to find all a domains A records from within Slack
  ☆11Updated 9 years ago
• salesforce / threatshell
  ☆64Updated 3 years ago