Alternatives and similar repositories for audit-kernel

Users that are interested in audit-kernel are comparing it to the libraries listed below

• linux-audit / audit-documentation
  Documentation and specifications
  ☆197Updated 5 months ago
• linux-audit / audit-userspace
  Linux audit userspace repository
  ☆656Updated this week
• linux-application-whitelisting / fapolicyd
  File Access Policy Daemon
  ☆215Updated 3 weeks ago
• SELinuxProject / refpolicy
  SELinux Reference Policy v2
  ☆333Updated last week
• pevma / SEPTun
  Suricata Extreme Performance Tuning guide
  ☆210Updated 7 years ago
• cormander / tpe-lkm
  Trusted Path Execution (TPE) Linux Kernel Module
  ☆160Updated 5 years ago
• nccgroup / ebpf
  eBPF - extended Berkeley Packet Filter tooling
  ☆122Updated 3 years ago
• trailofbits / ebpfpub
  ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
  ☆116Updated 2 years ago
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆117Updated 7 years ago
• willfindlay / bpfbox
  🐝 BPFBox 📦 Exploring process confinement in eBPF
  ☆103Updated last year
• sinkap / linux-krsi
  Fork from git://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git (unstable and force pushed!)
  ☆20Updated 2 years ago
• linux-audit / audit-testsuite
  A simple, self-contained regression test suite for the Linux Kernel's audit subsystem
  ☆23Updated 9 months ago
• plashchynski / viewssld
  viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…
  ☆74Updated 7 years ago
• OISF / libhtp
  LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces.
  ☆301Updated 2 months ago
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆107Updated 2 weeks ago
• oracle-samples / linux-blog-sample-code
  ☆45Updated 2 years ago
• SELinuxProject / setools
  SELinux Policy Analysis Tools
  ☆182Updated last month
• OpenSCAP / scap-workbench
  SCAP Scanner And Tailoring Graphical User Interface
  ☆232Updated last year
• corelight / community-id-spec
  An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
  ☆180Updated 9 months ago
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆274Updated 2 weeks ago
• OVALProject / Language
  The OVAL Language Schemas
  ☆87Updated 9 months ago
• NateBrune / fmem
  Linux Kernel Module designed to help analyze volatile memory in the linux kernel
  ☆118Updated last year
• Cisco-Talos / file2pcap
  ☆172Updated 3 years ago
• hardenedlinux / Debian-GNU-Linux-Profiles
  Debian GNU/Linux based Services Profiles
  ☆239Updated 3 years ago
• cloudlinux / libcare
  libcare -- Patch Userspace Code in Live Processes
  ☆151Updated 4 years ago
• elfmaster / kdress
  Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore
  ☆130Updated 8 months ago
• Gui774ume / ebpfkit-monitor
  ebpfkit-monitor is a tool that detects and protects against eBPF powered rootkits
  ☆132Updated 2 years ago
• OpenSCAP / openscap-daemon
  Manages continuous scans of your infrastructure
  ☆107Updated 3 years ago
• mrash / fwsnort
  Application Layer IDS/IPS with iptables
  ☆76Updated 6 years ago
• sysflow-telemetry / sysflow
  SysFlow documentation and issues tracker
  ☆46Updated 8 months ago