Alternatives and similar repositories for audit-userspace

Users that are interested in audit-userspace are comparing it to the libraries listed below

• linux-audit / audit-documentation
  Documentation and specifications
  ☆197Updated 5 months ago
• linux-audit / audit-kernel
  GitHub mirror of the Linux Kernel's audit repository
  ☆153Updated last week
• linux-application-whitelisting / fapolicyd
  File Access Policy Daemon
  ☆215Updated 3 weeks ago
• SELinuxProject / refpolicy
  SELinux Reference Policy v2
  ☆333Updated last week
• Neo23x0 / auditd
  Best Practice Auditd Configuration
  ☆1,643Updated 4 months ago
• bfuzzy / auditd-attack
  A Linux Auditd rule set mapped to MITRE's Attack Framework
  ☆795Updated 4 years ago
• threathunters-io / laurel
  Transform Linux Audit logs for SIEM usage
  ☆773Updated last month
• OpenSCAP / scap-workbench
  SCAP Scanner And Tailoring Graphical User Interface
  ☆232Updated last year
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆274Updated 2 weeks ago
• Tripwire / tripwire-open-source
  Open Source Tripwire®
  ☆900Updated last year
• palantir / osquery-configuration
  A repository for using osquery for incident detection and response
  ☆855Updated 2 years ago
• SELinuxProject / setools
  SELinux Policy Analysis Tools
  ☆182Updated last month
• containers / container-selinux
  SELinux policy files for Container Runtimes
  ☆274Updated 3 weeks ago
• microsoft / SysmonForLinux
  Sysmon for Linux
  ☆1,902Updated last month
• SELinuxProject / selinux-notebook
  The SELinux Notebook
  ☆635Updated 2 months ago
• cloudflare / bpftools
  BPF Tools - packet analyst toolkit
  ☆1,215Updated 9 months ago
• slackhq / go-audit
  go-audit is an alternative to the auditd daemon that ships with many distros
  ☆1,633Updated 3 weeks ago
• jmpsec / osctrl
  Fast and efficient osquery management
  ☆451Updated 3 weeks ago
• seccomp / libseccomp
  The main libseccomp repository
  ☆856Updated last month
• OpenSCAP / openscap
  NIST Certified SCAP 1.2 toolkit
  ☆1,517Updated 3 weeks ago
• lkrg-org / lkrg
  Linux Kernel Runtime Guard
  ☆461Updated this week
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆654Updated last week
• CISecurity / OVALRepo
  ☆278Updated 2 years ago
• wazuh / wazuh-ruleset
  Wazuh - Ruleset
  ☆450Updated 9 months ago
• a13xp0p0v / kernel-hardening-checker
  A tool for checking the security hardening options of the Linux kernel
  ☆1,903Updated last week
• teoseller / osquery-attck
  Mapping the MITRE ATT&CK Matrix with Osquery
  ☆796Updated 2 years ago
• DNS-OARC / dnscap
  Network capture utility designed specifically for DNS traffic
  ☆283Updated 2 weeks ago
• hardenedlinux / Debian-GNU-Linux-Profiles
  Debian GNU/Linux based Services Profiles
  ☆239Updated 3 years ago
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆107Updated 2 weeks ago
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆459Updated 2 weeks ago