Alternatives and similar repositories for doorman:

Users that are interested in doorman are comparing it to the libraries listed below

• palantir / osquery-configuration
  A repository for using osquery for incident detection and response
  ☆837Updated 2 years ago
• zentralopensource / zentral
  Zentral is a high-visibility platform for controlling Apple endpoints in enterprises. It brings great observability to IT and makes track…
  ☆767Updated this week
• kolide / fleet
  A flexible control server for osquery fleets
  ☆1,104Updated 4 years ago
• kolide / launcher
  Osquery launcher, autoupdater, and packager
  ☆515Updated this week
• Netflix-Skunkworks / diffy
  (DEPRECATED) Diffy is a triage tool used during cloud-centric security incidents, to help digital forensics and incident response (DFIR)…
  ☆633Updated last year
• jmpsec / osctrl
  Fast and efficient osquery management
  ☆411Updated this week
• rocknsm / rock
  Automated deployment scripts for the RockNSM network hunting distribution.
  ☆449Updated last year
• bfuzzy / auditd-attack
  A Linux Auditd rule set mapped to MITRE's Attack Framework
  ☆780Updated 4 years ago
• trailofbits / osquery-extensions
  osquery extensions by Trail of Bits
  ☆264Updated last year
• osquery / osquery-python
  Python bindings for osquery's Thrift API
  ☆295Updated 6 months ago
• teoseller / osquery-attck
  Mapping the MITRE ATT&CK Matrix with Osquery
  ☆787Updated last year
• OktaSecurityLabs / sgt
  Osquery Mangement Server
  ☆114Updated 4 years ago
• hubblestack / hubble
  Hubble is a modular, open-source security compliance framework. The project provides on-demand profile-based auditing, real-time security…
  ☆379Updated last year
• slackhq / go-audit
  go-audit is an alternative to the auditd daemon that ships with many distros
  ☆1,584Updated 5 months ago
• google / upvote_py2
  A multi-platform binary whitelisting solution
  ☆450Updated 3 years ago
• google / docker-explorer
  A tool to help forensicate offline docker acquisitions
  ☆534Updated 4 months ago
• DefensePointSecurity / threat_note
  DPS' Lightweight Investigation Notebook
  ☆427Updated last year
• StamusNetworks / Amsterdam
  Docker based Suricata, Elasticsearch, Logstash, Kibana, Scirius aka SELKS
  ☆184Updated 2 years ago
• biggiesmallsAG / nightHawkResponse
  Incident Response Forensic Framework
  ☆599Updated 5 years ago
• mozilla / mig
  Distributed & real time digital forensics at the speed of the cloud
  ☆1,203Updated 5 years ago
• wazuh / wazuh-ruleset
  Wazuh - Ruleset
  ☆437Updated 5 months ago
• google / grr-doc
  Documentation for the GRR Rapid Reponse framework
  ☆303Updated 5 months ago
• CityBaseInc / SIAC
  SIAC is an enterprise SIEM built on open-source technology.
  ☆114Updated 6 years ago
• mozilla / tls-observatory
  An observatory for TLS configurations, X509 certificates, and more.
  ☆536Updated 7 months ago
• Yelp / threat_intel
  Threat Intelligence APIs
  ☆276Updated last year
• uber-common / metta
  An information security preparedness tool to do adversarial simulation.
  ☆1,113Updated 5 years ago
• dev-sec / hardening
  DevSec Examples
  ☆337Updated last week
• HASecuritySolutions / VulnWhisperer
  Create actionable data from your Vulnerability Scans
  ☆1,365Updated 2 years ago
• Netflix / Fido
  ☆816Updated 7 years ago
• Netflix-Skunkworks / stethoscope-app
  A desktop application that checks security-related settings and makes recommendations for improvements without requiring central device m…
  ☆458Updated last year