Open-source platform for IT, security, and infrastructure teams. (Linux, macOS, Chrome, Windows, cloud, data center)
-
Updated
Jul 19, 2024 - Go
Open-source platform for IT, security, and infrastructure teams. (Linux, macOS, Chrome, Windows, cloud, data center)
Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, and case management. It also includes other tools such as osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.
Digging Deeper....
A binary authorization and monitoring system for macOS
Fast and efficient osquery management
Zentral is a high-visibility platform for controlling Apple endpoints in enterprises. It brings great observability to IT and makes tracking & reporting compliance much less manual.
Tinfoil Chat - Onion-routed, endpoint secure messaging system
Windows Exploit Protection Settings (Ultimate)
iDefender(冰盾 - 终端主动防御系统)
Awesome list of keywords and artifacts for Threat Hunting sessions
系统监控开发套件(sysmon、procmon、edr、终端安全、主机安全、零信任、上网行为管理、沙箱)
Rust Bindings for Endpoint Security
a business aimed endpoint protection system
Red Canary Mac Monitor is an advanced, stand-alone system monitoring tool tailor-made for macOS security research. Beginning with Endpoint Security (ES), it collects and enriches system events, displaying them graphically, with an expansive feature set designed to reduce noise.
Deploying the open-source SIEM/EDR solution, Wazuh and stress testing the capabilities of the platform.
Cortex XSOAR Integration for the SES EDR API at https://api.sep.securitycloud.symantec.com
A macOS behavior audit / event monitoring system with scope of file, process and network events (based on Endpoint Security Framework).
Authorization extension for popular web-frameworks to protect your endpoints
Create Linux Firewall Rule Related to SSH Automatically against BruteForce
uberAgent configuration: UXM settings & ESA rules + checks
Add a description, image, and links to the endpoint-security topic page so that developers can more easily learn about it.
To associate your repository with the endpoint-security topic, visit your repo's landing page and select "manage topics."