Alternatives and similar repositories for responding-at-scale-with-osquery

Users that are interested in responding-at-scale-with-osquery are comparing it to the libraries listed below

• MISP / MISPego
  Maltego Transform to put entities into MISP events
  ☆28Updated 4 years ago
• jheise / threatcmd
  Cli interface to threatcrowd.org
  ☆19Updated 8 years ago
• jaegeral / FireMISP
  FireEye Alert json files to MISP Malware information sharing plattform (Alpha)
  ☆32Updated 8 years ago
• Kathayra / HT-Trackr
  How can you track the hunting techniques you come up with?
  ☆13Updated 8 years ago
• ThreatResponse / threatresponse_web
  Web based analysis platform for use with the AWS_IR command line tool.
  ☆17Updated 9 years ago
• AlienVault-OTX / ThreatCrowd-Maltego
  Maltego transforms for the ThreatCrowd search API
  ☆49Updated 7 years ago
• sroberts / threat-intel-templates
  A set of templates for documenting threat intelligence
  ☆75Updated 12 years ago
• jaegeral / awesome-incident-response-pro-bono
  This repository is a curated list of pro bono incident response entities.
  ☆21Updated 2 years ago
• Xen0ph0n / MIDAS
  Metadata Inspection Database Alerting System
  ☆42Updated 12 years ago
• crits / mcrits
  CRITs IOC Visualization in Maltego
  ☆28Updated 10 years ago
• bostonlink / cuckooforcanari
  Cuckoo Sandbox Local Maltego Transforms Project
  ☆49Updated 11 years ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆87Updated 6 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆38Updated last year
• dougiep16 / actortrackr
  Home to the ActorTrackr source code
  ☆24Updated 8 years ago
• yeti-platform / pyeti
  Python bindings for Yeti's API
  ☆18Updated 2 years ago
• mpars0ns / maltego_censys
  Basic Maltego Transforms for looking up SSL certs and IP info from censys.io
  ☆41Updated 8 years ago
• ivanlei / threatbutt
  Threatbutt python client and Maltego transforms
  ☆51Updated last year
• michael-yip / MaltegoVT
  A set of Maltego transforms for VirusTotal Public API v2.0. This set has the added functionality of caching queries on a daily basis to s…
  ☆83Updated 9 years ago
• berggren / fordropweb
  Forensic Dropbox
  ☆21Updated 13 years ago
• yolothreat / utilitybelt
  A Python library for being a CND Batman....
  ☆35Updated 10 years ago
• bandrel / OCyara
  Performs OCR on image files and scans them for matches to YARA rules
  ☆42Updated 7 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆29Updated 2 years ago
• xme / mime2vt
  Unpack MIME attachments from a file and check them against virustotal.com
  ☆44Updated 9 years ago
• CIRCL / forensic-tools
  CIRCL system forensic tools or a jumble of tools to support forensic
  ☆42Updated 2 years ago
• da667 / Autosuricata
  first commit
  ☆20Updated last month
• certtools / contactdb
  The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams
  ☆37Updated 3 years ago
• mushorg / spamcan
  Spam trap management
  ☆23Updated last year
• MITRECND / yaraprocessor
  Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.
  ☆98Updated 11 years ago
• gamelinux / activedns
  An active domain name query tool to help keep track of domain name movements...
  ☆15Updated 4 years ago
• paulpc / nyx
  Threat Intelligence distribution
  ☆30Updated 9 years ago