osquery | Topic | Ecosyste.ms: Repos

Topic: "osquery"

xxh/xxh

🚀 Bring your favorite shell wherever you go through the ssh. Xonsh shell, fish, zsh, osquery and so on.

Language: Python - Size: 2.22 MB - Last synced at: 3 days ago - Pushed at: about 1 month ago - Stars: 5,600 - Forks: 115

fleetdm/fleet

Open-source platform for IT, security, and infrastructure teams. (Linux, macOS, Chrome, Windows, cloud, data center)

Language: Go - Size: 971 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 4,968 - Forks: 561

clong/DetectionLab

Automate the creation of a lab environment complete with security tooling and logging best practices

Language: HTML - Size: 190 MB - Last synced at: 13 days ago - Pushed at: 10 months ago - Stars: 4,737 - Forks: 993

kolide/fleet 📦

A flexible control server for osquery fleets

Size: 20.6 MB - Last synced at: 3 days ago - Pushed at: over 4 years ago - Stars: 1,105 - Forks: 262

palantir/osquery-configuration

A repository for using osquery for incident detection and response

Size: 83 KB - Last synced at: 2 months ago - Pushed at: almost 3 years ago - Stars: 839 - Forks: 119

zentralopensource/zentral

Zentral is a high-visibility platform for controlling Apple endpoints in enterprises. It brings great observability to IT and makes tracking & reporting compliance much less manual.

Language: Python - Size: 11 MB - Last synced at: 6 days ago - Pushed at: 15 days ago - Stars: 787 - Forks: 82

chainguard-dev/osquery-defense-kit

Production-ready detection & response queries for osquery

Language: Makefile - Size: 4.67 MB - Last synced at: 9 days ago - Pushed at: 9 days ago - Stars: 565 - Forks: 38

cyberdefenders/DetectionLabELK

DetectionLabELK is a fork from DetectionLab with ELK stack instead of Splunk.

Language: PowerShell - Size: 76.6 MB - Last synced at: about 1 month ago - Pushed at: over 3 years ago - Stars: 553 - Forks: 103

kolide/launcher

Osquery launcher, autoupdater, and packager

Language: Go - Size: 14.3 MB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 522 - Forks: 105

jmpsec/osctrl

Fast and efficient osquery management

Language: Go - Size: 5.42 MB - Last synced at: 26 days ago - Pushed at: 26 days ago - Stars: 436 - Forks: 56

osquery/osquery-go

Go bindings for osquery

Language: Go - Size: 179 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 394 - Forks: 80

hubblestack/hubble

Hubble is a modular, open-source security compliance framework. The project provides on-demand profile-based auditing, real-time security event notifications, alerting, and reporting.

Language: Python - Size: 6.76 MB - Last synced at: 6 days ago - Pushed at: almost 2 years ago - Stars: 383 - Forks: 87

trailofbits/osquery-extensions

osquery extensions by Trail of Bits

Language: C - Size: 9.54 MB - Last synced at: about 1 month ago - Pushed at: about 2 years ago - Stars: 263 - Forks: 36

aquasecurity/kube-query

[EXPERIMENTAL] Extend osquery to report on Kubernetes

Language: Go - Size: 14.5 MB - Last synced at: 19 days ago - Pushed at: about 4 years ago - Stars: 228 - Forks: 16

Kirtar22/ThreatHunting_with_Osquery

Threat Hunting & Incident Investigation with Osquery

Size: 474 KB - Last synced at: about 1 year ago - Pushed at: about 3 years ago - Stars: 188 - Forks: 28

bgenev/impulse-xdr

Fully automated host & network intrusion detection platform. Detects malware from behavioural patterns rather than signatures and enables deeper visibility than legacy tools.

Language: Python - Size: 117 MB - Last synced at: 5 months ago - Pushed at: about 1 year ago - Stars: 124 - Forks: 6

CityBaseInc/SIAC 📦

SIAC is an enterprise SIEM built on open-source technology.

Size: 1.3 MB - Last synced at: about 1 month ago - Pushed at: over 6 years ago - Stars: 114 - Forks: 21

emirozer/exposq

Go app that dispatches osquery to multi-machines

Language: Go - Size: 655 KB - Last synced at: about 2 years ago - Pushed at: about 8 years ago - Stars: 92 - Forks: 8

zercurity/zercurity 📦

Manage, monitor and improve your cyber security posture.

Language: Shell - Size: 2.69 MB - Last synced at: about 1 month ago - Pushed at: about 2 years ago - Stars: 90 - Forks: 16

AbGuthrie/goquery

Provide a shell like interface by utilizing osquery's distributed API

Language: Go - Size: 140 KB - Last synced at: 11 months ago - Pushed at: almost 5 years ago - Stars: 81 - Forks: 10

ReconInfoSec/rhq

Recon Hunt Queries

Size: 44.9 KB - Last synced at: 6 months ago - Pushed at: almost 4 years ago - Stars: 75 - Forks: 10

huoji120/DuckSysEye

SysEye是一个window上的基于att&ck现代EDR设计思想的威胁响应工具.有效检测常见的未知威胁与已知威胁.防守方的利剑

Size: 3.23 MB - Last synced at: 9 months ago - Pushed at: over 2 years ago - Stars: 63 - Forks: 10

kolide/kolide-quickstart 📦

[DEPRECATED] A quickstart demo for Kolide tools

Language: Shell - Size: 77.1 KB - Last synced at: 3 days ago - Pushed at: almost 7 years ago - Stars: 52 - Forks: 19

sidorares/osquery-node

node.js client for osquery

Language: JavaScript - Size: 11.7 KB - Last synced at: 23 days ago - Pushed at: almost 4 years ago - Stars: 30 - Forks: 4

kolide/osquery-starter-kit 📦

A starter-kit for a source-controlled, CLI-based osquery management workflow.

Size: 41 KB - Last synced at: 3 days ago - Pushed at: almost 7 years ago - Stars: 30 - Forks: 5

arubdesu/EAs

Scripts to return inventory information for use in the JamfPro, heavily leveraging osquery

Language: Python - Size: 41 KB - Last synced at: 21 days ago - Pushed at: over 9 years ago - Stars: 30 - Forks: 4

knightsc/system_policy

osquery table extension that allows querying of information from the macOS private SystemPolicy.framework

Language: Objective-C - Size: 22.5 KB - Last synced at: 11 months ago - Pushed at: over 3 years ago - Stars: 29 - Forks: 4

hrbrmstr/osqueryr

⁇ 'osquery' 'DBI' and 'dbplyr' Interface for R

Language: R - Size: 102 KB - Last synced at: about 1 month ago - Pushed at: almost 7 years ago - Stars: 29 - Forks: 2

Loginsoft-LLC/Linux-Exploit-Detection

Linux based vulnerabilities (CVE) exploit detection through runtime security using Falco/Osquery/Yara/Sigma

Language: Open Policy Agent - Size: 67.4 KB - Last synced at: 5 months ago - Pushed at: over 1 year ago - Stars: 21 - Forks: 1

polylogyx/plgx-esp 📦

Community Edition of the PolyLogyx Endpoint Security Platform; An open source and extensible platform to manage and monitor endpoints, based on osqery agent

Language: CSS - Size: 155 MB - Last synced at: about 2 years ago - Pushed at: almost 3 years ago - Stars: 21 - Forks: 15

groob/osquery-condition

Language: Go - Size: 4.88 KB - Last synced at: 27 days ago - Pushed at: over 7 years ago - Stars: 17 - Forks: 2

hubblestack/hubblestack_data

Data files for use with hubble

Language: Mask - Size: 1.25 MB - Last synced at: about 1 month ago - Pushed at: about 5 years ago - Stars: 16 - Forks: 32

GSA/laptop-management

ALPHA/WIP for OSquery configuration for Mac and Linux Operating Systems

Language: Shell - Size: 458 KB - Last synced at: about 1 month ago - Pushed at: over 7 years ago - Stars: 16 - Forks: 7

computablefacts/towerify

Manage fleet of YunoHost servers.

Language: PHP - Size: 41.2 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 15 - Forks: 1

secureworks/atomic-harness

A tool to run and validate telemetry for Atomic Red Team tests

Language: Go - Size: 212 KB - Last synced at: 10 months ago - Pushed at: about 1 year ago - Stars: 14 - Forks: 7

maxi-w/os-chat

Chat interface for your computer

Language: Python - Size: 704 KB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 14 - Forks: 0

jacknagz/osquery-cookbook

A Chef Cookbook to install and configure osquery.

Language: Ruby - Size: 194 KB - Last synced at: about 2 years ago - Pushed at: over 2 years ago - Stars: 13 - Forks: 18

sevickson/osquery_tables_graph

Repository containing Jupyter Notebooks for working with OSQuery tables and data

Language: HTML - Size: 557 KB - Last synced at: about 2 years ago - Pushed at: about 5 years ago - Stars: 13 - Forks: 4

leonjza/golert

🚨an osquery powered, almost cross platform HIDS

Language: Go - Size: 26.4 KB - Last synced at: about 1 month ago - Pushed at: over 6 years ago - Stars: 10 - Forks: 4

sttor/osquery-wazuh-response

Active Response plugin. Osquery to execute wazuh/ossec active response plugins. You can write your own plugins, easy to plug

Language: Shell - Size: 36.1 KB - Last synced at: about 1 year ago - Pushed at: almost 5 years ago - Stars: 9 - Forks: 4

hardenedlinux/debian-nix-manager 📦

Using nix(DevOps) to deploy Network Security Monitoring System on Debian

Language: Nix - Size: 82.3 MB - Last synced at: about 17 hours ago - Pushed at: about 4 years ago - Stars: 7 - Forks: 5

codexlynx/osquery-graphene

OSQuery GraphQL web service.

Language: Python - Size: 43 KB - Last synced at: 18 days ago - Pushed at: almost 8 years ago - Stars: 6 - Forks: 1

ketsapiwiq/siem-infra

Vulnerability detection, OSquery, fully-fledged Wazuh ELK stack with Linux and Windows Wazuh + osquery enrollment via Ansible.

Language: PowerShell - Size: 1.77 MB - Last synced at: 17 days ago - Pushed at: almost 3 years ago - Stars: 5 - Forks: 2

fleetdm/osquery-perf 📦

Tooling for performance testing of osquery TLS servers

Language: Go - Size: 23.4 KB - Last synced at: about 2 years ago - Pushed at: over 3 years ago - Stars: 5 - Forks: 1

puffyCid/osquery-packs

Small collection of osquery packs

Size: 6.84 KB - Last synced at: about 2 months ago - Pushed at: almost 6 years ago - Stars: 5 - Forks: 0

gibbs/puppet-osquery

Puppet osquery module

Language: Ruby - Size: 47.9 KB - Last synced at: 18 days ago - Pushed at: 21 days ago - Stars: 4 - Forks: 0

igor-suhorukov/postgres_osquery

Running "osquery" queries from PostgreSQL

Language: PLpgSQL - Size: 9.77 KB - Last synced at: 18 days ago - Pushed at: over 1 year ago - Stars: 4 - Forks: 0

xxh/xxh-shell-osquery

osquery xxh shell entrypoint

Language: Shell - Size: 29.3 KB - Last synced at: about 2 years ago - Pushed at: over 2 years ago - Stars: 4 - Forks: 1

predictiveworks/ignite-graph

IgniteGraph is a client layer for using Apache Ignite as a graph database. It is an implementation of the Apache TinkerPop interfaces.

Language: Scala - Size: 683 KB - Last synced at: about 2 years ago - Pushed at: almost 3 years ago - Stars: 4 - Forks: 1

dactivllc/osquery-live 📦

Try osquery live in the browser. Runs a real osqueryi shell.

Language: TypeScript - Size: 1.81 MB - Last synced at: about 1 year ago - Pushed at: about 3 years ago - Stars: 4 - Forks: 0

githubfoam/osquery-sandbox

osquery CTI, DFIR

Language: Jinja - Size: 103 KB - Last synced at: 28 days ago - Pushed at: almost 4 years ago - Stars: 4 - Forks: 2

keepwn/inspecquery

Inspecquery powered by Osquery

Language: Go - Size: 17.6 KB - Last synced at: over 1 year ago - Pushed at: almost 4 years ago - Stars: 4 - Forks: 1

puffyCid/lief-osquery

A PE and MACHO parser for osquery!

Language: C++ - Size: 27.3 KB - Last synced at: about 2 months ago - Pushed at: about 4 years ago - Stars: 4 - Forks: 0

jmpsec/osctrl-docs

Documentation for osctrl

Language: CSS - Size: 18.1 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 3 - Forks: 3

OWASP/www-project-open-source-security-application-platform

OWASP/OSSAP is an Open Source Security Applications Platform.

Language: HTML - Size: 31.3 KB - Last synced at: 8 months ago - Pushed at: 8 months ago - Stars: 3 - Forks: 2

uptycslabs/terraform-provider-uptycs

Language: Go - Size: 355 KB - Last synced at: 11 months ago - Pushed at: over 1 year ago - Stars: 3 - Forks: 1

tahadraidia/OSQueryED

A tool PoC that demonstrate how to leverage Osquery interactive shell named pipe implementation to enumerate windows machines.

Language: Go - Size: 6.84 KB - Last synced at: 21 days ago - Pushed at: almost 2 years ago - Stars: 3 - Forks: 1

predictiveworks/works-sqlstream

This project complements Apache Spark structured streaming with hand-picked streaming sources and sinks.

Language: Scala - Size: 4.69 MB - Last synced at: about 2 years ago - Pushed at: almost 3 years ago - Stars: 3 - Forks: 0

ake-persson/osquery-protobuf

osquery database schemas converted to protobuf

Language: Go - Size: 494 KB - Last synced at: about 2 years ago - Pushed at: about 5 years ago - Stars: 3 - Forks: 1

i2z1/airfleet

FleetDM API wrapper for threat hunting with R

Language: R - Size: 1.05 MB - Last synced at: about 1 month ago - Pushed at: 8 months ago - Stars: 2 - Forks: 0

chessmango/kolide-fleet-on-fargate

Sample CloudFormation templates for Kolide Fleet on AWS Fargate

Language: Dockerfile - Size: 20.5 KB - Last synced at: about 1 year ago - Pushed at: over 1 year ago - Stars: 2 - Forks: 1

uptycslabs/uptycs-client-go

Language: Go - Size: 277 KB - Last synced at: 11 months ago - Pushed at: over 1 year ago - Stars: 2 - Forks: 2

githubfoam/ubuntu-githubactions

ubuntu osquery

Language: Shell - Size: 96.7 KB - Last synced at: about 1 month ago - Pushed at: almost 3 years ago - Stars: 2 - Forks: 0

Cyb3r-Jak3/fleet-osquery

Scripts that install and configure osquery and fleet

Language: Shell - Size: 48.8 KB - Last synced at: 2 months ago - Pushed at: over 5 years ago - Stars: 2 - Forks: 0

wbolster/kolide-k2-launcher-arch-linux-packaging 📦

Arch Linux packaging scripts for Kolide K2 Launcher

Language: Shell - Size: 2.93 KB - Last synced at: about 2 years ago - Pushed at: over 5 years ago - Stars: 2 - Forks: 1

trailofbits/osquery-logger 📦

Mock server for debugging osqueryd

Language: Python - Size: 11.7 KB - Last synced at: about 2 years ago - Pushed at: over 5 years ago - Stars: 2 - Forks: 2

puffyCid/clamav-osquery

A ClamAV osquery extension

Language: C - Size: 84 KB - Last synced at: about 2 months ago - Pushed at: almost 6 years ago - Stars: 2 - Forks: 0

alias454/osquery-formula

A saltstack formula to install osquery on RHEL or Debian based systems.

Language: HTML - Size: 13.7 KB - Last synced at: about 2 years ago - Pushed at: over 6 years ago - Stars: 2 - Forks: 1

niyue/osquery_tls_server_splunk_app

Splunking your infrastructure with osquery

Language: Python - Size: 736 KB - Last synced at: about 2 years ago - Pushed at: about 8 years ago - Stars: 2 - Forks: 1

Troja007/Orbital

SQL queries for Orbital

Language: Python - Size: 56.6 KB - Last synced at: 18 days ago - Pushed at: 18 days ago - Stars: 1 - Forks: 0

nachorpaez/osquery-extensions

An Osquery extension with tables useful for IR investigations.

Language: Go - Size: 12.7 KB - Last synced at: 2 months ago - Pushed at: 2 months ago - Stars: 1 - Forks: 0

turbot/guardrails-agent-kubernetes

Docker container for Guardrails Kubernetes agent

Language: Dockerfile - Size: 36.1 KB - Last synced at: 3 months ago - Pushed at: 5 months ago - Stars: 1 - Forks: 0

githubfoam/macos-osquery-githubactions

macos osquery

Language: Shell - Size: 16.6 KB - Last synced at: about 1 month ago - Pushed at: over 2 years ago - Stars: 1 - Forks: 0

predictiveworks/works-beats

A collection of standalone Akka-based Http(s) services to connect to Fiware, OpenCTI, Osquery fleets, OPC-UA, ThingsBoard and Zeek.

Language: Scala - Size: 1.22 MB - Last synced at: about 2 years ago - Pushed at: almost 3 years ago - Stars: 1 - Forks: 1

hejcman/go-flows-osquery

A plugin for go-flows using OSQuery.

Language: Go - Size: 47.9 KB - Last synced at: 11 months ago - Pushed at: about 3 years ago - Stars: 1 - Forks: 0

spasam/mock-osquery-tls

Mock Osquery TLS server

Language: JavaScript - Size: 51.8 KB - Last synced at: 3 months ago - Pushed at: over 3 years ago - Stars: 1 - Forks: 0

davidecavestro/asdf-osqueryi

osquery interactive shell plugin for the asdf version manager

Language: Shell - Size: 11.7 KB - Last synced at: about 1 month ago - Pushed at: over 3 years ago - Stars: 1 - Forks: 1

Uptycs/osquery-boshrelease

Uptycs Osquery BOSH release

Language: HTML - Size: 131 KB - Last synced at: about 2 months ago - Pushed at: over 3 years ago - Stars: 1 - Forks: 0

This project complements Apache Spark Streaming with hand-picked streaming receivers for Eclipse Ditto, Fiware Context Broker, Fleet (DM), Eclipse Paho, HiveMQ, OpenCTI, Google PubSub, Server Sent Events, ThingsBoard and Zeek Sensor.

Language: Scala - Size: 956 KB - Last synced at: about 2 years ago - Pushed at: over 3 years ago - Stars: 1 - Forks: 0

githubfoam/win-circleci

windows osquery

Size: 107 KB - Last synced at: about 1 month ago - Pushed at: over 3 years ago - Stars: 1 - Forks: 0

woodonggyu/fleet

A flexible control server for osquery fleets.

Language: Shell - Size: 5.86 KB - Last synced at: about 2 years ago - Pushed at: almost 4 years ago - Stars: 1 - Forks: 0

d4rk-d4nph3/ThirdEye

Monitors your Kolide instance for un-authorized use

Language: Python - Size: 18.6 KB - Last synced at: about 2 years ago - Pushed at: almost 5 years ago - Stars: 1 - Forks: 0

devborz/osquery_history_extension

Osquery extension for user action history

Language: C++ - Size: 54.5 MB - Last synced at: about 2 years ago - Pushed at: about 5 years ago - Stars: 1 - Forks: 3

znb/osquery-attck Fork of teoseller/osquery-attck

Mapping the MITRE ATT&CK Matrix with Osquery

Size: 92.8 KB - Last synced at: about 2 years ago - Pushed at: over 6 years ago - Stars: 1 - Forks: 0

srozb/osq

osquery fleet management suite

Language: Shell - Size: 29.3 KB - Last synced at: almost 2 years ago - Pushed at: over 7 years ago - Stars: 1 - Forks: 0

zwopir/check_osquery

Nagios Check that returns the results of a osquery call as a nagios check result

Language: Go - Size: 10.7 KB - Last synced at: about 1 year ago - Pushed at: about 8 years ago - Stars: 1 - Forks: 0

lbonanomi/GeoSnitch

Linux and Windows laptop geolocation in osquery

Language: Go - Size: 9.77 KB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 0 - Forks: 0

khulnasoft/osinsight

🔍 Production-ready detection & response queries for osquery 🛡️ Boost endpoint monitoring, detect threats 🚨, and streamline incident response ⚡

Language: Makefile - Size: 3.15 MB - Last synced at: 6 days ago - Pushed at: 19 days ago - Stars: 0 - Forks: 1

ananya-5420/osquery-ossec-audit

Linux system auditing using osquery file integrity, and detect rootkits.

Size: 6.84 KB - Last synced at: 6 days ago - Pushed at: about 1 month ago - Stars: 0 - Forks: 0

scrymastic/goosquery

goosquery

Language: Go - Size: 411 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 0 - Forks: 0

linux-china/osquery-spring-boot-starter

Spring Boot Starter for osquery

Language: Java - Size: 48.8 KB - Last synced at: 4 days ago - Pushed at: 5 months ago - Stars: 0 - Forks: 0

javuto/javuto

My :octocat: README

Size: 1.95 MB - Last synced at: 3 months ago - Pushed at: 6 months ago - Stars: 0 - Forks: 0

agardnerIT/osquery-queries

Repository of sample queries for osquery. Submissions welcomed!

Size: 12.7 KB - Last synced at: about 1 month ago - Pushed at: 9 months ago - Stars: 0 - Forks: 0

0xrajneesh/Threat-Hunting-and-Investigation-using-Osquery

The goal of this home lab is to familiarize yourself with Osquery and its capabilities for threat detection and investigation. By setting up a lab environment, you'll gain hands-on experience with querying system information and using it to identify potential security threats.

Size: 3.91 KB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 0 - Forks: 0

outhex/osquery-python Fork of osquery/osquery-python

Python bindings for osquery's Thrift API

Language: Python - Size: 134 KB - Last synced at: about 2 years ago - Pushed at: over 2 years ago - Stars: 0 - Forks: 0