Alternatives and similar repositories for responding-at-scale-with-osquery

Users that are interested in responding-at-scale-with-osquery are comparing it to the libraries listed below

• MISP / MISPego
  Maltego Transform to put entities into MISP events
  ☆28Updated 4 years ago
• jheise / threatcmd
  Cli interface to threatcrowd.org
  ☆20Updated 8 years ago
• Xen0ph0n / MIDAS
  Metadata Inspection Database Alerting System
  ☆42Updated 12 years ago
• AlienVault-OTX / ThreatCrowd-Maltego
  Maltego transforms for the ThreatCrowd search API
  ☆47Updated 7 years ago
• ThreatResponse / threatresponse_web
  Web based analysis platform for use with the AWS_IR command line tool.
  ☆17Updated 9 years ago
• jaegeral / FireMISP
  FireEye Alert json files to MISP Malware information sharing plattform (Alpha)
  ☆32Updated 8 years ago
• crits / mcrits
  CRITs IOC Visualization in Maltego
  ☆28Updated 11 years ago
• Kathayra / HT-Trackr
  How can you track the hunting techniques you come up with?
  ☆13Updated 8 years ago
• bostonlink / cuckooforcanari
  Cuckoo Sandbox Local Maltego Transforms Project
  ☆49Updated 11 years ago
• ivanlei / threatbutt
  Threatbutt python client and Maltego transforms
  ☆51Updated last year
• certtools / contactdb
  The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams
  ☆37Updated 4 years ago
• sroberts / threat-intel-templates
  A set of templates for documenting threat intelligence
  ☆75Updated 12 years ago
• dougiep16 / actortrackr
  Home to the ActorTrackr source code
  ☆24Updated 8 years ago
• jaegeral / awesome-incident-response-pro-bono
  This repository is a curated list of pro bono incident response entities.
  ☆21Updated 2 years ago
• bandrel / OCyara
  Performs OCR on image files and scans them for matches to YARA rules
  ☆42Updated 7 years ago
• cert-se / megatron-java
  Megatron - A System for Abuse- and Incident Handling
  ☆45Updated 8 years ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆88Updated 6 years ago
• lolnate / vt-hunter
  Automation for VirusTotal
  ☆31Updated 9 years ago
• anl-cyberscience / LQMToolset
  Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.
  ☆20Updated 7 years ago
• yolothreat / utilitybelt
  A Python library for being a CND Batman....
  ☆35Updated 10 years ago
• mpars0ns / maltego_censys
  Basic Maltego Transforms for looking up SSL certs and IP info from censys.io
  ☆38Updated 8 years ago
• paulpc / nyx
  Threat Intelligence distribution
  ☆31Updated 10 years ago
• dutchcoders / homographs
  Homographs: brutefind homographs within a font
  ☆19Updated 8 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆40Updated last year
• EmersonElectricCo / boomerang
  A tool designed for consistent and safe capture of off network web resources.
  ☆39Updated 8 years ago
• thirdeyeintelligence / Memoirs-of-a-Threat-Hunter
  My personal experience in Threat Hunting and knowledge gained so far.
  ☆19Updated 8 years ago
• rshipp / python-dshield
  Pythonic interface to the Internet Storm Center / DShield API.
  ☆28Updated 2 years ago
• CIRCL / bgpranking-redis-api
  API to access the Redis database of a BGP Ranking instance.
  ☆17Updated 8 years ago
• michael-yip / MaltegoVT
  A set of Maltego transforms for VirusTotal Public API v2.0. This set has the added functionality of caching queries on a daily basis to s…
  ☆82Updated 10 years ago
• xme / mime2vt
  Unpack MIME attachments from a file and check them against virustotal.com
  ☆44Updated 9 years ago