Osquery Resources
☆63Aug 23, 2019Updated 6 years ago
Alternatives and similar repositories for awesome-osquery
Users that are interested in awesome-osquery are comparing it to the libraries listed below
Sorting:
- Mapping the MITRE ATT&CK Matrix with Osquery☆806May 11, 2023Updated 2 years ago
- Cisco Orbital - Osquery queries by Talos☆137Aug 23, 2024Updated last year
- InSpec Profile to validate the secure configuration of aws-rds-infrastructure-cis-baseline, against CIS's Amazon Web Services Three-tier …☆14Dec 14, 2025Updated 2 months ago
- Guardicore osqueries collection for asset information, TH and compliance.☆17Dec 22, 2021Updated 4 years ago
- Osquery Packs we use for customer security hardening☆12Jun 30, 2025Updated 8 months ago
- osquery query packs☆14Aug 31, 2018Updated 7 years ago
- ALPHA/WIP for OSquery configuration for Mac and Linux Operating Systems☆16Jan 9, 2018Updated 8 years ago
- osquery extensions by Trail of Bits☆269Apr 12, 2023Updated 2 years ago
- Threat Hunting & Incident Investigation with Osquery☆216Mar 30, 2022Updated 3 years ago
- A repository for using osquery for incident detection and response☆880Sep 8, 2025Updated 5 months ago
- Get a list of installed software in a safe manner☆11Aug 7, 2017Updated 8 years ago
- Remotely collect linux live forensics artifacts.☆14Jul 8, 2022Updated 3 years ago
- ☆15Aug 20, 2019Updated 6 years ago
- Ansible role to install auditbeat for security monitoring. (Ruleset included)☆15Nov 16, 2023Updated 2 years ago
- Helm Chart for Provisioning Clusters with the Rancher Multi-Cluster Manager with Rancher Cluster Templates☆23Updated this week
- It's not just UsnJrnl (USN Journal Records/Change Journal Records) parser.☆23Nov 11, 2018Updated 7 years ago
- Recon Hunt Queries☆79May 16, 2021Updated 4 years ago
- Collection of Slides From My Conference Talks☆20Nov 21, 2022Updated 3 years ago
- JXA script based on research by Jeff Johnson on leveraging TextEdit to remove quarantine attributes on files. Jeff's original research is…☆17Jan 31, 2021Updated 5 years ago
- Fast and efficient osquery management☆489Feb 24, 2026Updated last week
- Production-ready detection & response queries for osquery☆600Aug 13, 2025Updated 6 months ago
- ☆55Mar 20, 2022Updated 3 years ago
- Discover which process execute a hunted binary inside macOS☆27Dec 15, 2021Updated 4 years ago
- Windows Thingies in Python for live use.☆24Apr 22, 2019Updated 6 years ago
- Macos Malware Samples☆61Feb 22, 2021Updated 5 years ago
- Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.☆29Sep 29, 2025Updated 5 months ago
- ☆12Feb 18, 2026Updated 2 weeks ago
- A starter-kit for a source-controlled, CLI-based osquery management workflow.☆30Jun 1, 2018Updated 7 years ago
- Parses the WMI object database....looking for persistence☆34Dec 12, 2019Updated 6 years ago
- ☆34Aug 8, 2023Updated 2 years ago
- ☆31May 24, 2019Updated 6 years ago
- A lightweight service exchanging OIDC tokens for Tailscale Auth Keys☆32Apr 28, 2023Updated 2 years ago
- Osquery launcher, autoupdater, and packager☆537Updated this week
- An extensible component for detecting cosmetic contact lenses in iris imagery.☆10Jun 25, 2025Updated 8 months ago
- This repository wraps the KustoSchemaTools into a CLI tool inside a container. This way it can be used as GitHub Action☆11Oct 21, 2025Updated 4 months ago
- Simple Socket Protocol for Embedded Systems☆12Dec 12, 2025Updated 2 months ago
- ☆88Mar 7, 2025Updated 11 months ago
- KeyTerms centralized terminology management tool☆13Feb 7, 2019Updated 7 years ago
- Incident Notification Platform by @NC3-LU☆11Updated this week