Alternatives and similar repositories for osquery-hids:

Users that are interested in osquery-hids are comparing it to the libraries listed below

• yolothreat / utilitybelt
  A Python library for being a CND Batman....
  ☆35Updated 9 years ago
• uber-archive / usb2fac
  Enabling 2fac confirmation for newly connected USB devices
  ☆45Updated 8 years ago
• StamusNetworks / ansible-misp
  Ansible playbook to install Malware Information Sharing Platform (MISP)
  ☆17Updated 10 years ago
• Xen0ph0n / MIDAS
  Metadata Inspection Database Alerting System
  ☆42Updated 11 years ago
• magoo / Vault-for-Incident-Responders
  Things to know when DFIR occurs near a vault deployment.
  ☆43Updated 6 years ago
• jedisct1 / massresolver
  Mass DNS resolution tool
  ☆36Updated 4 years ago
• ThreatResponse / aws_ir_plugins
  Core incident handling plugins for aws_ir cli, incident pony, and more.
  ☆21Updated 6 years ago
• jgamblin / ipinfo-for-slack
  Custom slash command to do ipinfo.io lookups from within Slack
  ☆10Updated 8 years ago
• kolide / osquery-starter-kit
  A starter-kit for a source-controlled, CLI-based osquery management workflow.
  ☆30Updated 6 years ago
• shellntel-acct / websocket_egress
  Websocket based egress tester
  ☆20Updated 8 years ago
• hatching / tracy
  tracy - a system call tracer and injector. Find us in #tracy on irc.freenode.net
  ☆33Updated last year
• da667 / Autosuricata
  first commit
  ☆20Updated last year
• jgamblin / hostlookup-for-slack
  Custom slash command to find all a domains A records from within Slack
  ☆11Updated 8 years ago
• blacktop / language-yara
  Yara syntax highlighting
  ☆25Updated 3 years ago
• sroberts / responding-at-scale-with-osquery
  Using osquery for Mass Incident Detection & Response
  ☆19Updated 8 years ago
• iSECPartners / scout
  AWS EC2 and S3 Security Auditing Tool
  ☆41Updated 11 years ago
• cve-search / CVE-Search-MT
  CVE-Search Management Tools - Tools that might be useful for management purposes
  ☆22Updated 9 years ago
• kf0jvt / deez_factors
  Looks for GitHub org users without 2FA turned on
  ☆9Updated 8 years ago
• xme / mime2vt
  Unpack MIME attachments from a file and check them against virustotal.com
  ☆45Updated 9 years ago
• shirkdog / hunter-nsm
  Simple install script for Snort/Bro IDS with JSON logging on FreeBSD
  ☆18Updated 8 years ago
• gamelinux / activedns
  An active domain name query tool to help keep track of domain name movements...
  ☆15Updated 3 years ago
• davidski / VulnPryer
  🎯 Vulnerability Pryer - Prying context into your vulnerability data
  ☆21Updated 3 years ago
• blacktop / docker-yara
  Yara Dockerfile
  ☆50Updated 2 years ago
• tribalchicken / volatility-filevault2
  Volatility plugin to extract FileVault 2 VMK's
  ☆50Updated 3 years ago
• quarkslab / irma-ansible-old
  IRMA ansible
  ☆24Updated 8 years ago
• jheise / threatcmd
  Cli interface to threatcrowd.org
  ☆19Updated 7 years ago
• CIRCL / email-abuse
  Email Abuse - A Versatile Software for Email review, analysis and reporting
  ☆21Updated 9 years ago
• kolide / kolide-quickstart
  [DEPRECATED] A quickstart demo for Kolide tools
  ☆52Updated 6 years ago
• dutchcoders / homographs
  Homographs: brutefind homographs within a font
  ☆18Updated 7 years ago
• jandre / brosquery
  module for osquery to load Bro logs into tables
  ☆28Updated 9 years ago