Alternatives and similar repositories for responding-at-scale-with-osquery:

Users that are interested in responding-at-scale-with-osquery are comparing it to the libraries listed below

• jheise / threatcmd
  Cli interface to threatcrowd.org
  ☆19Updated 7 years ago
• MISP / MISPego
  Maltego Transform to put entities into MISP events
  ☆27Updated 3 years ago
• Xen0ph0n / MIDAS
  Metadata Inspection Database Alerting System
  ☆42Updated 11 years ago
• bostonlink / cuckooforcanari
  Cuckoo Sandbox Local Maltego Transforms Project
  ☆49Updated 10 years ago
• crits / mcrits
  CRITs IOC Visualization in Maltego
  ☆27Updated 10 years ago
• jaegeral / awesome-incident-response-pro-bono
  This repository is a curated list of pro bono incident response entities.
  ☆20Updated last year
• Kathayra / HT-Trackr
  How can you track the hunting techniques you come up with?
  ☆13Updated 7 years ago
• certtools / contactdb
  The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams
  ☆37Updated 3 years ago
• binarlyhq / binarly-query
  Command-line Interface for Binar.ly
  ☆37Updated 8 years ago
• xme / mime2vt
  Unpack MIME attachments from a file and check them against virustotal.com
  ☆44Updated 9 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• PidgeyL / MISP-Extractor
  Extract information from MISP via the API
  ☆15Updated 8 years ago
• 0pc0deFR / YaraRules
  Multiple rules for yara-project for detect compiler/packer/protector
  ☆33Updated 5 years ago
• sroberts / threat-intel-templates
  A set of templates for documenting threat intelligence
  ☆74Updated 12 years ago
• lolnate / vt-hunter
  Automation for VirusTotal
  ☆31Updated 8 years ago
• yeti-platform / pyeti
  Python bindings for Yeti's API
  ☆18Updated last year
• da667 / Autosuricata
  first commit
  ☆20Updated last year
• kevthehermit / yaraMail
  Yara Scanner For IMAP Feeds and saved Streams
  ☆28Updated 5 years ago
• ThreatResponse / threatresponse_web
  Web based analysis platform for use with the AWS_IR command line tool.
  ☆17Updated 8 years ago
• mpars0ns / maltego_censys
  Basic Maltego Transforms for looking up SSL certs and IP info from censys.io
  ☆41Updated 8 years ago
• paulpc / nyx
  Threat Intelligence distribution
  ☆30Updated 9 years ago
• jaegeral / FireMISP
  FireEye Alert json files to MISP Malware information sharing plattform (Alpha)
  ☆32Updated 7 years ago
• JamesHabben / MalwareStuff
  ☆16Updated 10 years ago
• mitre / ps_pc_props
  PowerShell Utilities for Security Situational Awareness
  ☆12Updated 8 years ago
• hiddenillusion / yara-goodies
  Useful scripts, rules etc. for use with YARA
  ☆27Updated 4 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆38Updated 6 months ago
• SekoiaLab / FastIR_Agent
  FastIR Agent is a Windows service to execute FastIR Collector on demand
  ☆14Updated 8 years ago
• yolothreat / utilitybelt
  A Python library for being a CND Batman....
  ☆35Updated 9 years ago
• dougiep16 / actortrackr
  Home to the ActorTrackr source code
  ☆24Updated 7 years ago
• brianwarehime / goldphish
  A Maltego transform and machine to identify possible phishing vectors using permutated domains
  ☆15Updated 9 years ago