Alternatives and similar repositories for audit-userspace

Users that are interested in audit-userspace are comparing it to the libraries listed below

• linux-audit / audit-documentation
  Documentation and specifications
  ☆201Updated 10 months ago
• linux-audit / audit-kernel
  GitHub mirror of the Linux Kernel's audit repository
  ☆156Updated last week
• linux-application-whitelisting / fapolicyd
  File Access Policy Daemon
  ☆229Updated this week
• Neo23x0 / auditd
  Best Practice Auditd Configuration
  ☆1,718Updated 2 weeks ago
• OpenSCAP / scap-workbench
  SCAP Scanner And Tailoring Graphical User Interface
  ☆234Updated last year
• SELinuxProject / refpolicy
  SELinux Reference Policy v2
  ☆355Updated last week
• OpenSCAP / openscap
  NIST Certified SCAP 1.2 toolkit
  ☆1,625Updated this week
• aide / aide
  aide source code
  ☆652Updated 2 months ago
• CISecurity / OVALRepo
  ☆280Updated 2 years ago
• Tripwire / tripwire-open-source
  Open Source Tripwire®
  ☆916Updated last year
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆283Updated last month
• bfuzzy / auditd-attack
  A Linux Auditd rule set mapped to MITRE's Attack Framework
  ☆815Updated 5 years ago
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆473Updated last week
• threathunters-io / laurel
  Transform Linux Audit logs for SIEM usage
  ☆804Updated 2 months ago
• wazuh / wazuh-ruleset
  Wazuh - Ruleset
  ☆492Updated last year
• containers / container-selinux
  SELinux policy files for Container Runtimes
  ☆284Updated last week
• shirkdog / pulledpork
  Pulled Pork for Snort and Suricata rule management (from Google code)
  ☆442Updated 4 years ago
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆668Updated 3 months ago
• jmpsec / osctrl
  Fast and efficient osquery management
  ☆472Updated last week
• OwlCyberDefense / refpolicy
  refpolicy has moved to https://github.com/SELinuxProject/refpolicy
  ☆127Updated 7 years ago
• palantir / osquery-configuration
  A repository for using osquery for incident detection and response
  ☆870Updated 3 months ago
• dev-sec / linux-baseline
  DevSec Linux Baseline - InSpec Profile
  ☆836Updated last month
• containers / udica
  This repository contains a tool for generating SELinux security profiles for containers
  ☆557Updated 3 weeks ago
• StamusNetworks / Clear-NDR-ISO
  A Suricata based NDR distribution
  ☆1,583Updated 2 months ago
• microsoft / SysinternalsEBPF
  The Linux port of the Sysinternals Sysmon tool.
  ☆278Updated 2 months ago
• jasonish / docker-suricata
  A Suricata Docker image.
  ☆305Updated 2 weeks ago
• idaholab / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆447Updated this week
• Scribery / tlog
  Terminal I/O logger
  ☆358Updated 3 weeks ago
• clearlinux / cve-check-tool
  Original Automated CVE Checking Tool
  ☆211Updated 6 years ago
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆190Updated 2 months ago