osquery extensions by Trail of Bits
☆269Apr 12, 2023Updated 2 years ago
Alternatives and similar repositories for osquery-extensions
Users that are interested in osquery-extensions are comparing it to the libraries listed below
Sorting:
- A repository for using osquery for incident detection and response☆882Sep 8, 2025Updated 6 months ago
- Fast and efficient osquery management☆494Feb 24, 2026Updated 3 weeks ago
- Mapping the MITRE ATT&CK Matrix with Osquery☆808May 11, 2023Updated 2 years ago
- A flexible control server for osquery fleets☆1,099Dec 15, 2020Updated 5 years ago
- ALPHA/WIP for OSquery configuration for Mac and Linux Operating Systems☆16Jan 9, 2018Updated 8 years ago
- an osquery fleet manager☆620Dec 8, 2022Updated 3 years ago
- Go bindings for osquery☆425Mar 6, 2026Updated 2 weeks ago
- ☆15Nov 11, 2015Updated 10 years ago
- Zentral is a high-visibility platform for controlling Apple endpoints in enterprises. It brings great observability to IT and makes track…☆847Updated this week
- Python bindings for osquery's Thrift API☆302Jul 24, 2024Updated last year
- Osquery launcher, autoupdater, and packager☆537Mar 12, 2026Updated last week
- An osquery extension for endpoint engineers☆121Updated this week
- ☆17Oct 27, 2017Updated 8 years ago
- osquery table extension that allows querying of information from the macOS private SystemPolicy.framework☆31Oct 29, 2021Updated 4 years ago
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆119Feb 13, 2026Updated last month
- Osquery Mangement Server☆115Aug 7, 2020Updated 5 years ago
- Golang command line tool for the macOS Endpoint Security Framework☆29Nov 25, 2019Updated 6 years ago
- A starter-kit for a source-controlled, CLI-based osquery management workflow.☆30Jun 1, 2018Updated 7 years ago
- [⛔️ Deprecated] Venator is a python tool used to gather data for proactive detection of malicious activity on macOS devices.☆177Jul 1, 2020Updated 5 years ago
- checks site content against known good ssdeep hash, identifies matches☆10Jun 2, 2019Updated 6 years ago
- Primary data pipelines for intrusion detection, security analytics and threat hunting☆85Jan 9, 2022Updated 4 years ago
- A user-mode application authorization system for MacOS written in Swift☆300Sep 18, 2020Updated 5 years ago
- OS X Strata builds upon Yelps OSXCollector, providing a user interface to analyze data collected from a potentially compromised system.☆14Jul 3, 2019Updated 6 years ago
- Osquery Resources☆63Aug 23, 2019Updated 6 years ago
- ☆88Mar 7, 2025Updated last year
- Deploy Kolide's Fleet into AWS using Terraform.☆15Apr 18, 2018Updated 7 years ago
- Threat Hunting & Incident Investigation with Osquery☆216Mar 30, 2022Updated 3 years ago
- osquery Foundation Charter, Legal, and Process Documents☆13Jun 10, 2022Updated 3 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆124Nov 19, 2020Updated 5 years ago
- macOS application that makes use of the EndpointSecurity framework☆19Aug 1, 2019Updated 6 years ago
- SightingDB is a database for Sightings☆22Jun 21, 2023Updated 2 years ago
- Attempt to replicate the functions of auto_rip by Corey Harrell in Python.☆12Aug 4, 2024Updated last year
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,174Jul 26, 2023Updated 2 years ago
- osquery query packs☆14Aug 31, 2018Updated 7 years ago
- Moroz is a Santa server☆145May 19, 2025Updated 10 months ago
- monitor macOS for malicious activity☆237Feb 5, 2025Updated last year
- domain name/brand infringement detector. pulls newly registered domains daily, searches variations of your company domain names and alert…☆23Feb 22, 2022Updated 4 years ago
- Production-ready detection & response queries for osquery☆601Aug 13, 2025Updated 7 months ago
- Recon Hunt Queries☆79May 16, 2021Updated 4 years ago