Alternatives and similar repositories for responding-at-scale-with-osquery

Users that are interested in responding-at-scale-with-osquery are comparing it to the libraries listed below

• MISP / MISPego
  Maltego Transform to put entities into MISP events
  ☆28Updated 4 years ago
• jheise / threatcmd
  Cli interface to threatcrowd.org
  ☆19Updated 8 years ago
• jaegeral / awesome-incident-response-pro-bono
  This repository is a curated list of pro bono incident response entities.
  ☆21Updated 2 years ago
• Xen0ph0n / MIDAS
  Metadata Inspection Database Alerting System
  ☆42Updated 12 years ago
• AlienVault-OTX / ThreatCrowd-Maltego
  Maltego transforms for the ThreatCrowd search API
  ☆49Updated 7 years ago
• crits / mcrits
  CRITs IOC Visualization in Maltego
  ☆28Updated 10 years ago
• jaegeral / FireMISP
  FireEye Alert json files to MISP Malware information sharing plattform (Alpha)
  ☆32Updated 8 years ago
• ThreatResponse / threatresponse_web
  Web based analysis platform for use with the AWS_IR command line tool.
  ☆17Updated 9 years ago
• Kathayra / HT-Trackr
  How can you track the hunting techniques you come up with?
  ☆13Updated 8 years ago
• bostonlink / cuckooforcanari
  Cuckoo Sandbox Local Maltego Transforms Project
  ☆49Updated 11 years ago
• dougiep16 / actortrackr
  Home to the ActorTrackr source code
  ☆24Updated 8 years ago
• ivanlei / threatbutt
  Threatbutt python client and Maltego transforms
  ☆51Updated last year
• mpars0ns / maltego_censys
  Basic Maltego Transforms for looking up SSL certs and IP info from censys.io
  ☆41Updated 8 years ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆88Updated 6 years ago
• anl-cyberscience / LQMToolset
  Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.
  ☆20Updated 6 years ago
• da667 / Autosuricata
  first commit
  ☆20Updated 2 weeks ago
• certtools / contactdb
  The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams
  ☆37Updated 3 years ago
• bandrel / OCyara
  Performs OCR on image files and scans them for matches to YARA rules
  ☆42Updated 6 years ago
• sroberts / threat-intel-templates
  A set of templates for documenting threat intelligence
  ☆75Updated 12 years ago
• xme / mime2vt
  Unpack MIME attachments from a file and check them against virustotal.com
  ☆44Updated 9 years ago
• michael-yip / MaltegoVT
  A set of Maltego transforms for VirusTotal Public API v2.0. This set has the added functionality of caching queries on a daily basis to s…
  ☆83Updated 9 years ago
• gamelinux / activedns
  An active domain name query tool to help keep track of domain name movements...
  ☆15Updated 4 years ago
• yeti-platform / pyeti
  Python bindings for Yeti's API
  ☆18Updated 2 years ago
• CIRCL / forensic-tools
  CIRCL system forensic tools or a jumble of tools to support forensic
  ☆42Updated 2 years ago
• znb / Elastic-Elephant
  Fun with Amazon AWS and Maltego
  ☆30Updated 8 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆38Updated 11 months ago
• 0pc0deFR / YaraRules
  Multiple rules for yara-project for detect compiler/packer/protector
  ☆33Updated 5 years ago
• lolnate / vt-hunter
  Automation for VirusTotal
  ☆31Updated 9 years ago
• CIRCL / bgpranking-redis-api
  API to access the Redis database of a BGP Ranking instance.
  ☆17Updated 7 years ago
• yolothreat / utilitybelt
  A Python library for being a CND Batman....
  ☆35Updated 9 years ago