Alternatives and similar repositories for audit-kernel:

Users that are interested in audit-kernel are comparing it to the libraries listed below

• linux-audit / audit-documentation
  Documentation and specifications
  ☆188Updated 3 weeks ago
• linux-audit / audit-userspace
  Linux audit userspace repository
  ☆616Updated last week
• linux-application-whitelisting / fapolicyd
  File Access Policy Daemon
  ☆207Updated last week
• cormander / tpe-lkm
  Trusted Path Execution (TPE) Linux Kernel Module
  ☆158Updated 5 years ago
• SELinuxProject / refpolicy
  SELinux Reference Policy v2
  ☆312Updated this week
• nccgroup / ebpf
  eBPF - extended Berkeley Packet Filter tooling
  ☆122Updated 2 years ago
• hardenedlinux / Debian-GNU-Linux-Profiles
  Debian GNU/Linux based Services Profiles
  ☆232Updated 2 years ago
• trailofbits / ebpfpub
  ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
  ☆117Updated last year
• sinkap / linux-krsi
  Fork from git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git (unstable and force pushed!)
  ☆20Updated last year
• OwlCyberDefense / refpolicy
  refpolicy has moved to https://github.com/SELinuxProject/refpolicy
  ☆126Updated 6 years ago
• elfmaster / kdress
  Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore
  ☆127Updated 4 months ago
• willfindlay / bpfbox
  🐝 BPFBox 📦 Exploring process confinement in eBPF
  ☆101Updated last year
• SELinuxProject / setools
  SELinux Policy Analysis Tools
  ☆166Updated last month
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆115Updated 6 years ago
• skx / linux-security-modules
  A place to store my toy linux-security modules.
  ☆92Updated 4 years ago
• microsoft / ipe
  IPE is a Linux Security Module (LSM), which allows for a configurable policy to enforce integrity requirements on the whole system. IPE b…
  ☆60Updated 3 weeks ago
• vmojzis / sepolicy_analysis
  SELinux policy analysis tool
  ☆16Updated 4 years ago
• linux-audit / audit-testsuite
  A simple, self-contained regression test suite for the Linux Kernel's audit subsystem
  ☆22Updated 5 months ago
• pevma / SEPTun
  Suricata Extreme Performance Tuning guide
  ☆207Updated 6 years ago
• kristrev / inet-diag-example
  Example application of how to passively monitor multiple sockets on Linux.
  ☆74Updated 7 years ago
• eclypsium / BootHole
  BootHole vulnerability (CVE-2020-10713). detection script, links and other mitigation related materials
  ☆64Updated 4 years ago
• google / kafel
  A language and library for specifying syscall filtering policies.
  ☆309Updated 6 months ago
• landlock-lsm / linux
  Linux kernel - See Landlock issues
  ☆36Updated 2 months ago
• cloudlinux / libcare
  libcare -- Patch Userspace Code in Live Processes
  ☆148Updated 4 years ago
• OISF / libhtp
  LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces.
  ☆297Updated 2 months ago
• crash-python / crash-python
  ☆69Updated 10 months ago
• pmem / vltrace
  Tool tracing syscalls in a fast way using eBPF linux kernel feature
  ☆99Updated last year
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆101Updated 7 months ago
• stevegrubb / libcap-ng
  Libcap-ng is a library for Linux that makes using posix capabilities easy.
  ☆73Updated 5 months ago
• joelagnel / bpfd
  BPFd (Deprecated, please see README.md) : Berkeley Packet Filter daemon (BPFd). Makes it possible to run BCC tools across systems.
  ☆96Updated 3 years ago