Alternatives and similar repositories for audit-userspace

Users that are interested in audit-userspace are comparing it to the libraries listed below

• linux-audit / audit-documentation
  Documentation and specifications
  ☆201Updated 9 months ago
• linux-audit / audit-kernel
  GitHub mirror of the Linux Kernel's audit repository
  ☆153Updated last week
• linux-application-whitelisting / fapolicyd
  File Access Policy Daemon
  ☆227Updated this week
• Neo23x0 / auditd
  Best Practice Auditd Configuration
  ☆1,696Updated 9 months ago
• aide / aide
  aide source code
  ☆645Updated last month
• OpenSCAP / scap-workbench
  SCAP Scanner And Tailoring Graphical User Interface
  ☆233Updated last year
• SELinuxProject / refpolicy
  SELinux Reference Policy v2
  ☆349Updated 2 weeks ago
• CISecurity / OVALRepo
  ☆280Updated 2 years ago
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆280Updated 3 weeks ago
• OpenSCAP / openscap
  NIST Certified SCAP 1.2 toolkit
  ☆1,591Updated last week
• Tripwire / tripwire-open-source
  Open Source Tripwire®
  ☆911Updated last year
• bfuzzy / auditd-attack
  A Linux Auditd rule set mapped to MITRE's Attack Framework
  ☆812Updated 5 years ago
• sjvermeu / cvechecker
  Command-line utility to scan the system and report on potential vulnerabilities, based on public CVE data
  ☆268Updated 2 years ago
• threathunters-io / laurel
  Transform Linux Audit logs for SIEM usage
  ☆800Updated last month
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆470Updated last week
• jmpsec / osctrl
  Fast and efficient osquery management
  ☆471Updated this week
• adulau / ssldump
  ssldump - (de-facto repository gathering patches around the cyberspace)
  ☆251Updated this week
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆666Updated last month
• corelight / community-id-spec
  An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
  ☆189Updated last year
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆501Updated last month
• microsoft / SysmonForLinux
  Sysmon for Linux
  ☆1,987Updated 3 months ago
• salesforce / hassh
  HASSH is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints…
  ☆541Updated 5 months ago
• shirkdog / pulledpork
  Pulled Pork for Snort and Suricata rule management (from Google code)
  ☆441Updated 4 years ago
• palantir / osquery-configuration
  A repository for using osquery for incident detection and response
  ☆867Updated last month
• jasonish / docker-suricata
  A Suricata Docker image.
  ☆302Updated 3 months ago
• wazuh / wazuh-ruleset
  Wazuh - Ruleset
  ☆485Updated last year
• microsoft / SysinternalsEBPF
  The Linux port of the Sysinternals Sysmon tool.
  ☆278Updated last month
• a13xp0p0v / kernel-hardening-checker
  A tool for checking the security hardening options of the Linux kernel
  ☆1,972Updated last week
• SELinuxProject / selinux-notebook
  The SELinux Notebook
  ☆671Updated last week
• pevma / SEPTun
  Suricata Extreme Performance Tuning guide
  ☆213Updated 7 years ago