Alternatives and similar repositories for osquery:

Users that are interested in osquery are comparing it to the libraries listed below

• microsoft / project-freta
  MSR Project Freta
  ☆76Updated 6 months ago
• cmu-sei / BigGrep
  A scalable search index for binary files
  ☆117Updated 6 years ago
• riverloopsec / hashashin
  Hashashin: A Fuzzy Matching Tool for Binary Ninja
  ☆89Updated last year
• mandiant / capa-testfiles
  Data to test capa's code and rules.
  ☆41Updated last week
• nsacyber / BAM
  The Binary Analysis Metadata tool gathers information about Windows binaries to aid in their analysis. #nsacyber
  ☆156Updated 8 months ago
• blitz / baresifter
  A bare-metal x86 instruction set fuzzer a la Sandsifter
  ☆63Updated 10 months ago
• netspooky / notes
  ☆25Updated last year
• usbarmory / armory-drive
  F-Secure Armory Drive - USB encrypted drive with mobile unlock over BLE
  ☆53Updated 2 weeks ago
• athre0z / disas-bench
  X86 disassembler benchmark
  ☆57Updated 7 months ago
• ainfosec / ecr_toolkit
  ☆28Updated 6 years ago
• cyber-itl / citl-static-analysis
  CITL's static analysis engine for native code artifacts
  ☆20Updated 3 years ago
• revng / pagebuster
  PageBuster - dump all executable pages of packed processes.
  ☆201Updated 3 years ago
• nimrodpar / Crawl-Labeled-PE
  Crawl (~600K) labeled Portable Exe files from Microsoft Cabs
  ☆13Updated 3 years ago
• Cisco-Talos / Mussels
  ☆49Updated 3 weeks ago
• Bareflank / boxy
  bareflank based hypervisor with guest support
  ☆59Updated 4 years ago
• fkie-cad / pcapFS
  A FUSE module to mount captured network data
  ☆36Updated last week
• ufrisk / presentations
  Conference Presentations
  ☆42Updated 4 years ago
• goretk / pygore
  pyGoRE - Python library for analyzing Go binaries
  ☆64Updated 2 years ago
• gamozolabs / falkervisor_beta
  ☆74Updated 4 years ago
• Cybergenik / hopper
  Coverage-Guided Greybox Distributed Fuzzer
  ☆127Updated 5 months ago
• netspooky / pdiff
  Binary Protocol Differ
  ☆117Updated 4 years ago
• CERT-Polska / ursadb
  Trigram database written in C++, suited for malware indexing
  ☆125Updated 3 months ago
• cromulencellc / qemu-shoggoth
  QEMU enhanced with OS handlers, external plugins, and rapid analysis execution engine.
  ☆41Updated 4 years ago
• idaholab / EMV
  Exploit, Malware and Vulnerability Scoring Application
  ☆10Updated last year
• silviocesare / Clonewise
  Clonewise - Detecting Package Clones and Inferring Security Vulnerabilities on Entire Linux Distributions.
  ☆24Updated 11 years ago
• riverloopsec / ninjadiff
  NinjaDiff is a binary diffing plugin for Binary Ninja. Read more on our blog, and contribute code & improvements!
  ☆60Updated 3 years ago
• trailofbits / polyfile
  A pure Python cleanroom implementation of libmagic, with instrumented parsing from Kaitai struct and an interactive hex viewer
  ☆341Updated 7 months ago
• sdasgup3 / binary-decompilation
  Extracting high level semantic information from binary code
  ☆64Updated 5 years ago
• trailofbits / bpf_tutorials_code
  This repository contains the companion code from the "All your tracing are belong to BPF" blog posts
  ☆18Updated last year
• trailofbits / testing-handbook
  Trail of Bits Testing Handbook
  ☆60Updated last week