Linux audit userspace repository
☆705Mar 21, 2026Updated this week
Alternatives and similar repositories for audit-userspace
Users that are interested in audit-userspace are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- GitHub mirror of the Linux Kernel's audit repository☆158Mar 16, 2026Updated last week
- Documentation and specifications☆204Jan 24, 2025Updated last year
- Best Practice Auditd Configuration☆1,781Nov 27, 2025Updated 3 months ago
- This is an R shiny app that visualizes audit data using many tools all in one app.☆38Jun 4, 2021Updated 4 years ago
- A simple, self-contained regression test suite for the Linux Kernel's audit subsystem☆24Dec 16, 2025Updated 3 months ago
- A Linux Auditd rule set mapped to MITRE's Attack Framework☆822Jul 8, 2020Updated 5 years ago
- go-audit is an alternative to the auditd daemon that ships with many distros☆1,660Updated this week
- This is the upstream repository for the Security Enhanced Linux (SELinux) userland libraries and tools. The software provided by this pro…☆1,561Updated this week
- CEF plugin for audisp (Linux Audit)☆23Aug 19, 2016Updated 9 years ago
- Cloud Native Runtime Security☆8,743Updated this week
- Anything Sysmon related from the MSTIC R&D team☆156Jun 8, 2024Updated last year
- OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, roo…☆5,027Mar 14, 2026Updated last week
- File Access Policy Daemon☆234Updated this week
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆119Feb 13, 2026Updated last month
- Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OIS…☆6,081Updated this week
- Collection of Auditd Examples and Presentations☆88Oct 16, 2020Updated 5 years ago
- go-libaudit is a library for communicating with the Linux Audit Framework.☆157May 15, 2025Updated 10 months ago
- Wazuh - Ruleset☆509Sep 19, 2024Updated last year
- Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and sys…☆15,418Jan 28, 2026Updated last month
- A repository for using osquery for incident detection and response☆884Sep 8, 2025Updated 6 months ago
- BCC - Tools for BPF-based Linux IO analysis, networking, monitoring, and more☆22,298Mar 4, 2026Updated 2 weeks ago
- Linux system exploration and troubleshooting tool with first class support for containers☆8,223Jan 29, 2026Updated last month
- ☆41Jan 15, 2021Updated 5 years ago
- Tools to manage the Linux NetLabel subsystem☆28Aug 30, 2025Updated 6 months ago
- ☆3,102Updated this week
- Transform Linux Audit logs for SIEM usage☆821Mar 5, 2026Updated 2 weeks ago
- OpenBSM open audit implementation☆169Jan 27, 2026Updated last month
- Main Sigma Rule Repository☆10,224Updated this week
- Mapping the MITRE ATT&CK Matrix with Osquery☆808May 11, 2023Updated 2 years ago
- Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.☆14,987Updated this week
- Puppet module for Auditd☆41Jan 26, 2021Updated 5 years ago
- Upstream shadow tree☆372Mar 16, 2026Updated last week
- aide source code☆696Jan 31, 2026Updated last month
- Linux Kernel Runtime Guard☆583Updated this week
- Linux PAM (Pluggable Authentication Modules for Linux) project☆767Mar 16, 2026Updated last week
- A tool for checking the security hardening options of the Linux kernel☆2,049Feb 28, 2026Updated 3 weeks ago
- Sysmon for Linux☆2,083Mar 5, 2026Updated 2 weeks ago
- libsinsp, libscap, the kernel module driver, and the eBPF driver sources☆302Updated this week
- bpflock - eBPF driven security for locking and auditing Linux machines☆151Feb 16, 2022Updated 4 years ago