osquery extensions by Trail of Bits
☆269Apr 12, 2023Updated 2 years ago
Alternatives and similar repositories for osquery-extensions
Users that are interested in osquery-extensions are comparing it to the libraries listed below
Sorting:
- A repository for using osquery for incident detection and response☆881Sep 8, 2025Updated 5 months ago
- Fast and efficient osquery management☆488Updated this week
- Mapping the MITRE ATT&CK Matrix with Osquery☆806May 11, 2023Updated 2 years ago
- A flexible control server for osquery fleets☆1,099Dec 15, 2020Updated 5 years ago
- ALPHA/WIP for OSquery configuration for Mac and Linux Operating Systems☆16Jan 9, 2018Updated 8 years ago
- an osquery fleet manager☆620Dec 8, 2022Updated 3 years ago
- Zentral is a high-visibility platform for controlling Apple endpoints in enterprises. It brings great observability to IT and makes track…☆844Updated this week
- Osquery launcher, autoupdater, and packager☆537Updated this week
- ☆15Nov 11, 2015Updated 10 years ago
- Go bindings for osquery☆424Feb 10, 2026Updated 2 weeks ago
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆119Feb 13, 2026Updated 2 weeks ago
- An osquery extension for endpoint engineers☆119Jan 27, 2026Updated last month
- Python bindings for osquery's Thrift API☆302Jul 24, 2024Updated last year
- A starter-kit for a source-controlled, CLI-based osquery management workflow.☆30Jun 1, 2018Updated 7 years ago
- ☆17Oct 27, 2017Updated 8 years ago
- Passive discovery and listing of devices on a network☆12Apr 21, 2025Updated 10 months ago
- osquery table extension that allows querying of information from the macOS private SystemPolicy.framework☆31Oct 29, 2021Updated 4 years ago
- A user-mode application authorization system for MacOS written in Swift☆301Sep 18, 2020Updated 5 years ago
- Python script to decode common encoded PowerShell scripts☆217Jun 13, 2018Updated 7 years ago
- ☆88Mar 7, 2025Updated 11 months ago
- Osquery Resources☆63Aug 23, 2019Updated 6 years ago
- Threat Hunting & Incident Investigation with Osquery☆216Mar 30, 2022Updated 3 years ago
- Attempt to replicate the functions of auto_rip by Corey Harrell in Python.☆12Aug 4, 2024Updated last year
- Osquery Mangement Server☆115Aug 7, 2020Updated 5 years ago
- [⛔️ Deprecated] Venator is a python tool used to gather data for proactive detection of malicious activity on macOS devices.☆177Jul 1, 2020Updated 5 years ago
- Deploy Kolide's Fleet into AWS using Terraform.☆15Apr 18, 2018Updated 7 years ago
- Production-ready detection & response queries for osquery☆600Aug 13, 2025Updated 6 months ago
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆124Nov 19, 2020Updated 5 years ago
- Primary data pipelines for intrusion detection, security analytics and threat hunting☆85Jan 9, 2022Updated 4 years ago
- A Splunk app mapped to MITRE ATT&CK to guide your threat hunts☆1,173Jul 26, 2023Updated 2 years ago
- ☆15Aug 20, 2019Updated 6 years ago
- BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.☆1,443Dec 12, 2023Updated 2 years ago
- macOS application that makes use of the EndpointSecurity framework☆19Aug 1, 2019Updated 6 years ago
- A repository for using windows event forwarding for incident detection and response☆1,296Sep 8, 2025Updated 5 months ago
- Golang command line tool for the macOS Endpoint Security Framework☆29Nov 25, 2019Updated 6 years ago
- Recon Hunt Queries☆79May 16, 2021Updated 4 years ago
- Cisco Orbital - Osquery queries by Talos☆137Aug 23, 2024Updated last year
- Moroz is a Santa server☆142May 19, 2025Updated 9 months ago
- Windows Events Attack Samples☆2,515Jan 24, 2023Updated 3 years ago