osquery-configuration
A repository for using osquery for incident detection and response (by palantir)
awesome-threat-detection
✨ A curated list of awesome threat detection and hunting resources 🕵️♂️ (by 0x4D31)
osquery-configuration | awesome-threat-detection | |
---|---|---|
1 | 5 | |
802 | 3,423 | |
0.0% | - | |
10.0 | 2.6 | |
almost 2 years ago | 4 months ago | |
GNU General Public License v3.0 or later | - |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
osquery-configuration
Posts with mentions or reviews of osquery-configuration.
We have used some of these posts to build our list of alternatives
and similar projects.
-
Osquery-auditd compability
I use config and flags file from https://github.com/palantir/osquery-configuration/tree/master/Classic/Servers/Linux
awesome-threat-detection
Posts with mentions or reviews of awesome-threat-detection.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2023-04-04.
- Career growth in cybersecurity
- 0x4D31/awesome-threat-detection: A curated list of awesome threat detection and hunting resources
- GitHub - 0x4D31/awesome-threat-detection: A curated list of awesome threat detection and hunting resources
-
Threat Hunting resources for query based hunting? Open source query libraries?
Here's a git repo on a pretty tight curated list of threat hunting and detection resources, I bet you'd find something useful on there.
-
Alert for ransomware that bypassed endpoint protection
Some additional resources can be found at https://github.com/0x4D31/awesome-threat-detection
What are some alternatives?
When comparing osquery-configuration and awesome-threat-detection you can also consider the following projects:
my-infosec-awesome - My curated list of awesome links, resources and tools on infosec related topics
Raccine - A Simple Ransomware Vaccine
Awesome-CobaltStrike-Defence - Defences against Cobalt Strike
awesome-detection-engineering - Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
Purpleteam - Purpleteam scripts simulation & Detection - trigger events for SOC detections
Watcher - Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.