Alternatives and similar repositories for doorman:

Users that are interested in doorman are comparing it to the libraries listed below

• palantir / osquery-configuration
  A repository for using osquery for incident detection and response
  ☆842Updated 2 years ago
• kolide / fleet
  A flexible control server for osquery fleets
  ☆1,104Updated 4 years ago
• zentralopensource / zentral
  Zentral is a high-visibility platform for controlling Apple endpoints in enterprises. It brings great observability to IT and makes track…
  ☆782Updated this week
• Netflix-Skunkworks / diffy
  (DEPRECATED) Diffy is a triage tool used during cloud-centric security incidents, to help digital forensics and incident response (DFIR)…
  ☆632Updated last year
• trailofbits / osquery-extensions
  osquery extensions by Trail of Bits
  ☆263Updated last year
• kolide / launcher
  Osquery launcher, autoupdater, and packager
  ☆517Updated this week
• bfuzzy / auditd-attack
  A Linux Auditd rule set mapped to MITRE's Attack Framework
  ☆786Updated 4 years ago
• rocknsm / rock
  Automated deployment scripts for the RockNSM network hunting distribution.
  ☆451Updated last year
• osquery / osquery-python
  Python bindings for osquery's Thrift API
  ☆296Updated 8 months ago
• jmpsec / osctrl
  Fast and efficient osquery management
  ☆425Updated this week
• DefensePointSecurity / threat_note
  DPS' Lightweight Investigation Notebook
  ☆427Updated last year
• teoseller / osquery-attck
  Mapping the MITRE ATT&CK Matrix with Osquery
  ☆790Updated last year
• google / docker-explorer
  A tool to help forensicate offline docker acquisitions
  ☆538Updated 5 months ago
• google / upvote_py2
  A multi-platform binary whitelisting solution
  ☆450Updated 3 years ago
• slackhq / go-audit
  go-audit is an alternative to the auditd daemon that ships with many distros
  ☆1,587Updated last week
• StamusNetworks / Amsterdam
  Docker based Suricata, Elasticsearch, Logstash, Kibana, Scirius aka SELKS
  ☆184Updated 2 years ago
• lateralblast / lunar
  A UNIX security auditing tool based on several security frameworks
  ☆314Updated 8 months ago
• ciscocsirt / malspider
  Malspider is a web spidering framework that detects characteristics of web compromises.
  ☆416Updated 2 years ago
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆646Updated 3 months ago
• crits / crits
  CRITs - Collaborative Research Into Threats
  ☆900Updated 5 years ago
• dev-sec / chef-os-hardening
  This chef cookbook provides numerous security-related configurations, providing all-round base protection.
  ☆442Updated 9 months ago
• wazuh / wazuh-ruleset
  Wazuh - Ruleset
  ☆438Updated 6 months ago
• ThreatResponse / aws_ir
  Python installable command line utiltity for mitigation of host and key compromises.
  ☆344Updated 3 years ago
• biggiesmallsAG / nightHawkResponse
  Incident Response Forensic Framework
  ☆599Updated 5 years ago
• OktaSecurityLabs / sgt
  Osquery Mangement Server
  ☆113Updated 4 years ago
• ciscocsirt / GOSINT
  The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).
  ☆543Updated last year
• PUNCH-Cyber / stoq
  An open source framework for enterprise level automated analysis.
  ☆395Updated 2 years ago
• jonschipp / ISLET
  Isolated, Scalable, & Lightweight Environment for Training
  ☆111Updated 5 years ago
• Netflix / Fido
  ☆816Updated 7 years ago
• airbnb / binaryalert
  BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.
  ☆1,419Updated last year