Based on our record, osquery seems to be more popular. It has been mentiond 18 times since March 2021. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
The largest we have successfully deployed is on the OSQuery schema https://osquery.io/ which is 277 tables and lots of business context (malwares, vulnerabilities, Windows registry keys, etc). - Source: Hacker News / 2 months ago
From a self hosted standpoint OSQuery or Wazuh are your best bets for monitoring USB devices. Windows makes blocking really challenging and I’m not aware of any “free” solutions that attempt it. Source: 12 months ago
Configure auditd to monitor host activity: https://izyknows.medium.com/linux-auditd-for-threat-detection-d06c8b941505 or osquery: https://osquery.io/ (or similar software: filebeat for example). Source: about 1 year ago
OS Query : Easily ask questions about your Linux, Windows, and macOS infrastructure. - Source: dev.to / about 1 year ago
Osquery + Fleet. https://osquery.io/ https://fleetdm.com/, using the two allows you to build a query to answer what ever questions you (or an auditor) might have about your environment. Source: over 1 year ago
Samhain - The Samhain host-based intrusion detection system (HIDS) provides file integrity checking and log...
Tripwire - Open Source Tripwire software is a security and data integrity tool useful for monitoring and...
Ossec - OSSEC is an Open Source Host-based Intrusion Detection System.
AIDE - AIDE (Advanced Intrusion Detection Environment) is a file and directory integrity checker.
ClamAV - Application and Data, Application Utilities, and Security
Wazuh - Open Source Host and Endpoint Security