Alternatives and similar repositories for doorman

Users that are interested in doorman are comparing it to the libraries listed below

• palantir / osquery-configuration
  A repository for using osquery for incident detection and response
  ☆853Updated 2 years ago
• kolide / fleet
  A flexible control server for osquery fleets
  ☆1,105Updated 4 years ago
• kolide / launcher
  Osquery launcher, autoupdater, and packager
  ☆527Updated this week
• Netflix-Skunkworks / diffy
  (DEPRECATED) Diffy is a triage tool used during cloud-centric security incidents, to help digital forensics and incident response (DFIR)…
  ☆634Updated last year
• zentralopensource / zentral
  Zentral is a high-visibility platform for controlling Apple endpoints in enterprises. It brings great observability to IT and makes track…
  ☆795Updated this week
• osquery / osquery-python
  Python bindings for osquery's Thrift API
  ☆297Updated 10 months ago
• trailofbits / osquery-extensions
  osquery extensions by Trail of Bits
  ☆265Updated 2 years ago
• jmpsec / osctrl
  Fast and efficient osquery management
  ☆450Updated 3 weeks ago
• dropbox / securitybot
  Distributed alerting for the masses!
  ☆993Updated 6 years ago
• rocknsm / rock
  Automated deployment scripts for the RockNSM network hunting distribution.
  ☆454Updated last year
• bfuzzy / auditd-attack
  A Linux Auditd rule set mapped to MITRE's Attack Framework
  ☆793Updated 4 years ago
• OktaSecurityLabs / sgt
  Osquery Mangement Server
  ☆114Updated 4 years ago
• google / upvote_py2
  A multi-platform binary whitelisting solution
  ☆450Updated 3 years ago
• biggiesmallsAG / nightHawkResponse
  Incident Response Forensic Framework
  ☆601Updated 5 years ago
• ciscocsirt / malspider
  Malspider is a web spidering framework that detects characteristics of web compromises.
  ☆415Updated 2 years ago
• slackhq / go-audit
  go-audit is an alternative to the auditd daemon that ships with many distros
  ☆1,631Updated 2 weeks ago
• jonschipp / ISLET
  Isolated, Scalable, & Lightweight Environment for Training
  ☆111Updated 5 years ago
• DefensePointSecurity / threat_note
  DPS' Lightweight Investigation Notebook
  ☆432Updated last year
• hubblestack / hubble
  Hubble is a modular, open-source security compliance framework. The project provides on-demand profile-based auditing, real-time security…
  ☆383Updated last year
• google / docker-explorer
  A tool to help forensicate offline docker acquisitions
  ☆545Updated 8 months ago
• nbrownus / streamstash
  Log aggregating, filtering, redirecting service
  ☆60Updated 5 years ago
• unfetter-discover / unfetter
  The main project for the Unfetter-Discover application. This is the project that will hold the configuration files, the docker-compose f…
  ☆414Updated 2 years ago
• teoseller / osquery-attck
  Mapping the MITRE ATT&CK Matrix with Osquery
  ☆796Updated 2 years ago
• StamusNetworks / Amsterdam
  Docker based Suricata, Elasticsearch, Logstash, Kibana, Scirius aka SELKS
  ☆183Updated 2 years ago
• ThreatResponse / aws_ir
  Python installable command line utiltity for mitigation of host and key compromises.
  ☆345Updated 3 years ago
• google / grr-doc
  Documentation for the GRR Rapid Reponse framework
  ☆303Updated 9 months ago
• mozilla / mig
  Distributed & real time digital forensics at the speed of the cloud
  ☆1,204Updated 5 years ago
• wesleyraptor / streamingphish
  Python-based utility that uses supervised machine learning to detect phishing domains from the Certificate Transparency log network.
  ☆323Updated 9 months ago
• lateralblast / lunar
  A UNIX security auditing tool based on several security frameworks
  ☆315Updated 3 weeks ago
• austin-taylor / flare
  An analytical framework for network traffic and behavioral analytics
  ☆452Updated 2 years ago