Alternatives and similar repositories for osquery-extensions:

Users that are interested in osquery-extensions are comparing it to the libraries listed below

• palantir / osquery-configuration
  A repository for using osquery for incident detection and response
  ☆844Updated 2 years ago
• teoseller / osquery-attck
  Mapping the MITRE ATT&CK Matrix with Osquery
  ☆793Updated last year
• CrowdStrike / automactc
  AutoMacTC: Automated Mac Forensic Triage Collector
  ☆538Updated 3 years ago
• zeek / zeek-agent
  This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2
  ☆123Updated 4 years ago
• unfetter-discover / unfetter-analytic
  Main Build directory
  ☆179Updated 5 years ago
• log2timeline / dftimewolf
  A framework for orchestrating forensic collection, processing and data export
  ☆310Updated 2 weeks ago
• EmersonElectricCo / fsf
  File Scanning Framework
  ☆292Updated 3 years ago
• Kirtar22 / Litmus_Test
  Detecting ATT&CK techniques & tactics for Linux
  ☆258Updated 4 years ago
• endgameinc / eqllib
  ☆164Updated 4 years ago
• CheckPointSW / Cuckoo-AWS
  Extension to Cuckoo Sandbox open source projects, adds support to AWS cloud functionalities and enables running emulation on auto-scaling…
  ☆136Updated 3 years ago
• mitre / brawl-public-game-001
  Data from a BRAWL Automated Adversary Emulation Exercise
  ☆205Updated 4 years ago
• orlikoski / CDQR
  The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted driv…
  ☆336Updated 2 years ago
• google / GiftStick
  1-Click push forensics evidence to the cloud
  ☆142Updated 10 months ago
• SecurityRiskAdvisors / TALR
  Threat Alert Logic Repository
  ☆92Updated 6 years ago
• TheHive-Project / Hippocampe
  Threat Feed Aggregation, Made Easy
  ☆167Updated 4 years ago
• OktaSecurityLabs / sgt
  Osquery Mangement Server
  ☆114Updated 4 years ago
• mandiant / ioc_writer
  ☆202Updated last year
• BayshoreNetworks / yextend
  Yara integrated software to handle archive file data.
  ☆306Updated 2 years ago
• csirtgadgets / bearded-avenger
  CIF v3 -- the fastest way to consume threat intelligence
  ☆182Updated 2 years ago
• harvard-itsecurity / docker-misp
  Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
  ☆175Updated 4 years ago
• P4T12ICK / ypsilon
  Automated Use Case Testing
  ☆167Updated 6 years ago
• rastrea2r / rastrea2r
  Collecting & Hunting for IOCs with gusto and style
  ☆238Updated 3 years ago
• pan-unit42 / playbook_viewer
  ☆172Updated 10 months ago
• olafhartong / ATTACKdatamap
  A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework
  ☆352Updated 4 years ago
• randomuserid / Adama
  Searches For Threat Hunting and Security Analytics
  ☆241Updated 3 weeks ago
• PUNCH-Cyber / stoq
  An open source framework for enterprise level automated analysis.
  ☆396Updated 2 years ago
• carbonblack / tau-tools
  A repo containing tools developed by Carbon Black's Threat Research Team: Threat Analysis Unit
  ☆234Updated 3 years ago
• sttor / awesome-osquery
  Osquery Resources
  ☆60Updated 5 years ago
• orlikoski / Skadi
  Collect, Process, and Hunt with host based data from MacOS, Windows, and Linux
  ☆500Updated 2 years ago
• zercurity / zercurity
  Manage, monitor and improve your cyber security posture.
  ☆90Updated last year