trailofbits / osquery

Related projects ⓘ

Alternatives and complementary repositories for osquery

• Bareflank / boxy
  bareflank based hypervisor with guest support
  ☆59Updated 4 years ago
• nsacyber / BAM
  The Binary Analysis Metadata tool gathers information about Windows binaries to aid in their analysis. #nsacyber
  ☆156Updated 6 months ago
• cmu-sei / BigGrep
  A scalable search index for binary files
  ☆116Updated 6 years ago
• Sentinel-One / SKREAM
  SentinelOne's KeRnel Exploits Advanced Mitigations
  ☆52Updated 6 years ago
• ZetaTwo / prime-finder
  Find RSA primes in files
  ☆20Updated 2 years ago
• mandiant / capa-testfiles
  Data to test capa's code and rules.
  ☆39Updated last week
• oberoisecurity / ghidra-processor-module-generator
  A step towards automating the creation of Ghidra processor modules
  ☆36Updated 4 years ago
• athre0z / disas-bench
  X86 disassembler benchmark
  ☆54Updated 4 months ago
• trailofbits / KRFAnalysis
  Collection of LLVM passes and triage tools for use with the KRF fuzzer
  ☆35Updated 2 years ago
• ainfosec / ecr_toolkit
  ☆27Updated 6 years ago
• hatching / roach
  Cockroach is your primitive & immortal swiss army knife.
  ☆45Updated 2 years ago
• radareorg / r2yara
  yara and radare2, better together
  ☆23Updated this week
• schieb / ELFManip
  Modify ELF executables
  ☆16Updated 5 years ago
• trailofbits / uthenticode
  A cross-platform library for verifying Authenticode signatures
  ☆139Updated 3 weeks ago
• dod-cyber-crime-center / Dragodis
  Dragodis is a Python framework which allows for the creation of universal disassembler scripts.
  ☆43Updated 5 months ago
• ionescu007 / hdk
  (unofficial) Hyper-V® Development Kit
  ☆215Updated 9 months ago
• revng / pagebuster
  PageBuster - dump all executable pages of packed processes.
  ☆201Updated 3 years ago
• Phorklift / phorklift
  Phorklift is an HTTP server and proxy daemon, with clear, powerful and dynamic configuration.
  ☆45Updated 3 years ago
• trailofbits / linuxevents
  A sample PoC for container-aware exec events for osquery
  ☆23Updated 9 months ago
• riverloopsec / hashashin
  Hashashin: A Fuzzy Matching Tool for Binary Ninja
  ☆88Updated last year
• ZetaTwo / ifunc-dumper
  Dump GNU IFUNC implementation offsets from libc
  ☆10Updated 2 years ago
• CERT-Polska / ursadb
  Trigram database written in C++, suited for malware indexing
  ☆123Updated last month
• microsoft / project-freta
  MSR Project Freta
  ☆76Updated 4 months ago
• mellow-hype / santa-linux
  A proof-of-concept Linux clone of Santa, Google's binary authorization system for macOS
  ☆30Updated 2 years ago
• phdphuc / mac-a-mal
  The current repository contains all the scripts needed to build kernel-mode mac-a-mal malicious activity hooking on macOS.
  ☆82Updated 6 years ago
• rickmark / isafety
  Toolset to examine iDevices for Security / Safety Threats
  ☆21Updated last year
• bcdannyboy / Research
  General Research Repository - Only updated when I feel like it
  ☆28Updated last month
• NationalSecurityAgency / pelz
  ☆30Updated 6 months ago
• trailofbits / ManticoreUI
  The Manticore User Interface with plugins for Binary Ninja and Ghidra
  ☆73Updated 8 months ago
• Vector35 / function_detection_test_suite
  suite of binaries used to test function identification
  ☆28Updated 7 years ago