magoo / osquery-hids
Launchd daemon that reports major OSX modifications through growl
☆16Updated 10 years ago
Alternatives and similar repositories for osquery-hids:
Users that are interested in osquery-hids are comparing it to the libraries listed below
- A Python library for being a CND Batman....☆35Updated 9 years ago
- Enabling 2fac confirmation for newly connected USB devices☆45Updated 8 years ago
- Ansible playbook to install Malware Information Sharing Platform (MISP)☆17Updated 10 years ago
- Metadata Inspection Database Alerting System☆42Updated 11 years ago
- Things to know when DFIR occurs near a vault deployment.☆43Updated 6 years ago
- Mass DNS resolution tool☆36Updated 4 years ago
- Core incident handling plugins for aws_ir cli, incident pony, and more.☆21Updated 6 years ago
- Custom slash command to do ipinfo.io lookups from within Slack☆10Updated 8 years ago
- A starter-kit for a source-controlled, CLI-based osquery management workflow.☆30Updated 6 years ago
- Websocket based egress tester☆20Updated 8 years ago
- tracy - a system call tracer and injector. Find us in #tracy on irc.freenode.net☆33Updated last year
- first commit☆20Updated last year
- Custom slash command to find all a domains A records from within Slack☆11Updated 8 years ago
- Yara syntax highlighting☆25Updated 3 years ago
- Using osquery for Mass Incident Detection & Response☆19Updated 8 years ago
- AWS EC2 and S3 Security Auditing Tool☆41Updated 11 years ago
- CVE-Search Management Tools - Tools that might be useful for management purposes☆22Updated 9 years ago
- Looks for GitHub org users without 2FA turned on☆9Updated 8 years ago
- Unpack MIME attachments from a file and check them against virustotal.com☆45Updated 9 years ago
- Simple install script for Snort/Bro IDS with JSON logging on FreeBSD☆18Updated 8 years ago
- An active domain name query tool to help keep track of domain name movements...☆15Updated 3 years ago
- 🎯 Vulnerability Pryer - Prying context into your vulnerability data☆21Updated 3 years ago
- Yara Dockerfile☆50Updated 2 years ago
- Volatility plugin to extract FileVault 2 VMK's☆50Updated 3 years ago
- IRMA ansible☆24Updated 8 years ago
- Cli interface to threatcrowd.org☆19Updated 7 years ago
- Email Abuse - A Versatile Software for Email review, analysis and reporting☆21Updated 9 years ago
- [DEPRECATED] A quickstart demo for Kolide tools☆52Updated 6 years ago
- Homographs: brutefind homographs within a font☆18Updated 7 years ago
- module for osquery to load Bro logs into tables☆28Updated 9 years ago