Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →
Top 19 edr Open-Source Projects
-
-
Elkeid
Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and serverless. It is derived from ByteDance's internal best practices.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
-
KQL
Threat Hunting query in Microsoft 365 Defender, XDR. Provide out-of-the-box KQL hunting queries - App, Email, Identity and Endpoint.
-
Owlyshield
Owlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact).
-
EDR-Testing-Script
Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter/Invoke-DOSfuscation payloads
-
KnownDllUnhook
Replace the .txt section of the current loaded modules from \KnownDlls\ to bypass edrs
-
wanna-see-a-whiter-white
CSS trick/bug to display a brighter white by exploiting browsers' HDR capability and Apple's EDR system
-
-
-
BrightXDR
Free and Open Source alternative to Vivid macOS application to extend Apple XDR display brightness from 500 up to 1600 nits.
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Project mention: BypassAV: This map lists the essential techniques to bypass anti-virus and EDR | /r/blueteamsec | 2023-06-18
Project mention: Owlyshield - an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact) | /r/purpleteamsec | 2023-07-06
You also only really need the video to push the browser to do things in HDR. You can’t express a CSS colour way outside the normal range, but blending calculations are not clamped so can be used to get the colour. https://github.com/kiding/wanna-see-a-whiter-white was posted here a while ago and demonstrated the technique.
Project mention: UTMStack: Open-Source SIEM, XDR Powered by Real-Time Correlation | news.ycombinator.com | 2024-02-14
NOTE:
The open source projects on this list are ordered by number of github stars.
The number of mentions indicates repo mentiontions in the last 12 Months or
since we started tracking (Dec 2020).
edr related posts
-
BypassAV: This map lists the essential techniques to bypass anti-virus and EDR
-
Using Python to Operate in EDR blind spots
-
Using Python to operate in EDR blind spots
-
Updated KQL learning – KC7, the best place to start hunting
-
Endpoint Threat Hunting with KQL
-
New Repo – Threat Hunting with KQL
-
Threat Hunting with KQL, Microsoft Security
-
A note from our sponsor - InfluxDB
www.influxdata.com | 9 May 2024
Index
What are some of the best open-source edr projects? This list will help you:
| Project | Stars | |
|---|---|---|
| 1 | BypassAV | 2,215 |
| 2 | Elkeid | 2,100 |
| 3 | fibratus | 2,077 |
| 4 | BLUESPAWN | 1,205 |
| 5 | whids | 1,025 |
| 6 | awesome-edr-bypass | 784 |
| 7 | TelemetrySourcerer | 728 |
| 8 | DripLoader | 666 |
| 9 | Pyramid | 614 |
| 10 | ScareCrow-CobaltStrike | 447 |
| 11 | KQL | 394 |
| 12 | Owlyshield | 370 |
| 13 | iMonitorSDK | 321 |
| 14 | EDR-Testing-Script | 278 |
| 15 | KnownDllUnhook | 277 |
| 16 | wanna-see-a-whiter-white | 269 |
| 17 | UTMStack | 184 |
| 18 | WhiteBeam | 96 |
| 19 | BrightXDR | 77 |
Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com