Alternatives and similar repositories for audit-userspace:

Users that are interested in audit-userspace are comparing it to the libraries listed below

• linux-audit / audit-documentation
  Documentation and specifications
  ☆189Updated 2 months ago
• linux-audit / audit-kernel
  GitHub mirror of the Linux Kernel's audit repository
  ☆148Updated last week
• linux-application-whitelisting / fapolicyd
  File Access Policy Daemon
  ☆208Updated last week
• Neo23x0 / auditd
  Best Practice Auditd Configuration
  ☆1,584Updated 2 months ago
• bfuzzy / auditd-attack
  A Linux Auditd rule set mapped to MITRE's Attack Framework
  ☆787Updated 4 years ago
• OpenSCAP / scap-workbench
  SCAP Scanner And Tailoring Graphical User Interface
  ☆230Updated last year
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆266Updated 3 months ago
• palantir / osquery-configuration
  A repository for using osquery for incident detection and response
  ☆842Updated 2 years ago
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆646Updated 3 months ago
• SELinuxProject / refpolicy
  SELinux Reference Policy v2
  ☆321Updated this week
• shirkdog / pulledpork
  Pulled Pork for Snort and Suricata rule management (from Google code)
  ☆432Updated 3 years ago
• microsoft / SysinternalsEBPF
  The Linux port of the Sysinternals Sysmon tool.
  ☆258Updated last week
• Tripwire / tripwire-open-source
  Open Source Tripwire®
  ☆882Updated last year
• OpenSCAP / openscap
  NIST Certified SCAP 1.2 toolkit
  ☆1,462Updated this week
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆452Updated last week
• SELinuxProject / selinux-notebook
  The SELinux Notebook
  ☆612Updated last month
• aide / aide
  aide source code
  ☆590Updated this week
• wazuh / wazuh-ruleset
  Wazuh - Ruleset
  ☆438Updated 6 months ago
• threathunters-io / laurel
  Transform Linux Audit logs for SIEM usage
  ☆754Updated this week
• CISecurity / OVALRepo
  ☆276Updated last year
• seccomp / libseccomp
  The main libseccomp repository
  ☆834Updated 2 weeks ago
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆473Updated 2 months ago
• dev-sec / linux-baseline
  DevSec Linux Baseline - InSpec Profile
  ☆800Updated 7 months ago
• salesforce / hassh
  HASSH is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints…
  ☆538Updated last year
• StamusNetworks / SELKS
  A Suricata based IDS/IPS/NSM distro
  ☆1,520Updated 7 months ago
• cisco / mercury
  Mercury: network metadata capture and analysis
  ☆455Updated 3 weeks ago
• containers / container-selinux
  SELinux policy files for Container Runtimes
  ☆264Updated this week
• clearlinux / cve-check-tool
  Original Automated CVE Checking Tool
  ☆212Updated 5 years ago
• sjvermeu / cvechecker
  Command-line utility to scan the system and report on potential vulnerabilities, based on public CVE data
  ☆262Updated last year
• OwlCyberDefense / refpolicy
  refpolicy has moved to https://github.com/SELinuxProject/refpolicy
  ☆126Updated 6 years ago