Alternatives and similar repositories for osquery-hids

Users that are interested in osquery-hids are comparing it to the libraries listed below

• yolothreat / utilitybelt
  A Python library for being a CND Batman....
  ☆35Updated 10 years ago
• exp0se / bro-intel-generator
  Script for generating Bro intel files from pdf or html reports
  ☆77Updated 9 years ago
• magoo / Vault-for-Incident-Responders
  Things to know when DFIR occurs near a vault deployment.
  ☆43Updated 7 years ago
• open-nsm / ContainNSM
  Dockerfiles for NSM tools
  ☆84Updated 8 years ago
• hillar / CDMCS
  Cyber Defence Monitoring Course Suite :: Suricata, Bro, Moloch
  ☆61Updated 8 years ago
• salesforce / threatshell
  ☆64Updated 3 years ago
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 4 years ago
• OktaSecurityLabs / sgt
  Osquery Mangement Server
  ☆114Updated 5 years ago
• jandre / brosquery
  module for osquery to load Bro logs into tables
  ☆28Updated 10 years ago
• demisto / alfred
  A Slack bot to add security info to messages containing URLs, hashes and IPs
  ☆71Updated last year
• da667 / Autosuricata
  first commit
  ☆20Updated last month
• xme / misp-docker
  Docker container for MISP
  ☆96Updated 7 years ago
• fox-it / bro-scripts
  Bro-IDS scripts
  ☆50Updated 9 years ago
• mixmodeai / bro_intel_linter
  Bro Intel Feed Linter
  ☆26Updated 6 years ago
• kolide / kolide-quickstart
  [DEPRECATED] A quickstart demo for Kolide tools
  ☆52Updated 7 years ago
• sroberts / hubot-vtr-scripts
  Scripts for making Hubot a CND Sidekick
  ☆59Updated 9 years ago
• SuperCowPowers / old-workbench-archived
  Workbench: A scalable python framework for security research and development teams.
  ☆92Updated 6 years ago
• BechtelCIRT / beholder
  Beholder is a shell script which installs and configures essentials to peer into your network activity.
  ☆19Updated 8 years ago
• hadojae / redonion
  **BETA** A simple buildscript for network security monitoring on RHEL/CentOS
  ☆31Updated 8 years ago
• anthonykasza / snapshooter
  It's like a polaroid, but for domains
  ☆24Updated 10 years ago
• xme / mime2vt
  Unpack MIME attachments from a file and check them against virustotal.com
  ☆44Updated 9 years ago
• jeffbryner / pyioc
  Python tools for IOC (Indicator of Compromise) handling
  ☆96Updated 3 years ago
• kf0jvt / osq_simulator
  ☆14Updated 9 years ago
• Yelp / amira
  AMIRA: Automated Malware Incident Response & Analysis
  ☆151Updated last month
• tklengyel / honeybrid
  Honeybrid is a network application built to 1) administrate network of honeypots, and 2) transparently redirect live network sessions (TC…
  ☆31Updated 6 years ago
• criticalstack / bro-scripts
  ☆72Updated 3 years ago
• zeek / zeek-agent
  This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2
  ☆123Updated 4 years ago
• paralax / BurningDogs
  Honeypot log processor to create OTX Pulse entries
  ☆28Updated last year
• r3comp1le / VT-Hunter
  Manage VT Alerts
  ☆62Updated 9 years ago
• jheise / threatcmd
  Cli interface to threatcrowd.org
  ☆19Updated 8 years ago