wfsec / osxstrata
OS X Strata builds upon Yelps OSXCollector, providing a user interface to analyze data collected from a potentially compromised system.
☆14Updated 5 years ago
Related projects: ⓘ
- Scripts for making Hubot a CND Sidekick☆59Updated 8 years ago
- Scripts from my book OS X Incident Response Scripting and Analysis -> https://www.amazon.com/dp/012804456X/ref=cm_sw_r_tw_dp_U_x_fQeLAb68…☆49Updated 7 years ago
- Filters that process and transform the output of osxcollector☆77Updated 5 years ago
- An integration between Tanium and Osquery☆12Updated 7 years ago
- ☆103Updated this week
- [DEPRECATED] A quickstart demo for Kolide tools☆52Updated 6 years ago
- ☆14Updated 8 years ago
- Shell scripts to audit OS X security using CIS Benchmarks.☆18Updated 8 years ago
- Python script to parse the Most Recently Used (MRU) plist files on macOS into a more human friendly format.☆100Updated 6 years ago
- Deploy Kolide's Fleet into AWS using Terraform.☆15Updated 6 years ago
- This repo contains all of my OS hardening scripts☆68Updated 6 years ago
- Beholder is a shell script which installs and configures essentials to peer into your network activity.☆19Updated 7 years ago
- Enrich a host with open source security information☆27Updated 8 years ago
- AMIRA: Automated Malware Incident Response & Analysis☆150Updated 10 months ago
- ☆64Updated 2 years ago
- A script to analyze geographic GSuite Login activity☆10Updated 7 years ago
- ☆36Updated 7 years ago
- Things to know when DFIR occurs near a vault deployment.☆43Updated 6 years ago
- ☆65Updated this week
- This script helps automate application of DISA's security config to an OS X machine☆49Updated 11 years ago
- Bringing DevOps to Forensics☆34Updated 9 years ago
- PoC script showing that MacOS leaves the wireless key in NVRAM, in plaintext and accessible to anyone.☆29Updated 5 years ago
- Harbinger Threat Intelligence☆81Updated 8 years ago
- Virustotal Lookup filter for Logstash☆16Updated 7 years ago
- ☆44Updated this week
- Osquery Mangement Server☆114Updated 4 years ago
- ☆20Updated this week
- Cli interface to threatcrowd.org☆19Updated 7 years ago
- ☆15Updated 5 years ago