linux-audit/audit-userspace external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

linux-audit/audit-userspace

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/linux-audit/audit-userspace)

Close

linux-audit / audit-userspaceView on GitHubMore

• External links
• Readme badge

Linux audit userspace repository

☆708Apr 4, 2026Updated last week

Alternatives and similar repositories for audit-userspace

Users that are interested in audit-userspace are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• linux-audit / audit-kernel

  View on GitHub
  GitHub mirror of the Linux Kernel's audit repository
  ☆159Updated this week
• linux-audit / audit-documentation

  View on GitHub
  Documentation and specifications
  ☆205Jan 24, 2025Updated last year
• Neo23x0 / auditd

  View on GitHub
  Best Practice Auditd Configuration
  ☆1,789Nov 27, 2025Updated 4 months ago
• stevegrubb / audit-explorer

  View on GitHub
  This is an R shiny app that visualizes audit data using many tools all in one app.
  ☆39Jun 4, 2021Updated 4 years ago
• linux-audit / audit-testsuite

  View on GitHub
  A simple, self-contained regression test suite for the Linux Kernel's audit subsystem
  ☆25Dec 16, 2025Updated 3 months ago
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• bfuzzy / auditd-attack

  View on GitHub
  A Linux Auditd rule set mapped to MITRE's Attack Framework
  ☆821Jul 8, 2020Updated 5 years ago
• slackhq / go-audit

  View on GitHub
  go-audit is an alternative to the auditd daemon that ships with many distros
  ☆1,654Mar 19, 2026Updated 3 weeks ago
• SELinuxProject / selinux

  View on GitHub
  This is the upstream repository for the Security Enhanced Linux (SELinux) userland libraries and tools. The software provided by this pro…
  ☆1,568Mar 20, 2026Updated 3 weeks ago
• falcosecurity / falco

  View on GitHub
  Cloud Native Runtime Security
  ☆8,842Apr 6, 2026Updated last week
• microsoft / MSTIC-Sysmon

  View on GitHub
  Anything Sysmon related from the MSTIC R&D team
  ☆156Jun 8, 2024Updated last year
• ossec / ossec-hids

  View on GitHub
  OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, roo…
  ☆5,019Mar 22, 2026Updated 3 weeks ago
• linux-application-whitelisting / fapolicyd

  View on GitHub
  File Access Policy Daemon
  ☆235Apr 4, 2026Updated last week
• trailofbits / ebpfpub

  View on GitHub
  ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
  ☆122Mar 30, 2026Updated last week
• OISF / suricata

  View on GitHub
  Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OIS…
  ☆6,134Updated this week
• Wordpress hosting with auto-scaling on Cloudways • Ad
  Fully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
• EricGershman / auditd-examples

  View on GitHub
  Collection of Auditd Examples and Presentations
  ☆88Oct 16, 2020Updated 5 years ago
• elastic / go-libaudit

  View on GitHub
  go-libaudit is a library for communicating with the Linux Audit Framework.
  ☆158May 15, 2025Updated 10 months ago
• wazuh / wazuh-ruleset

  View on GitHub
  Wazuh - Ruleset
  ☆511Sep 19, 2024Updated last year
• palantir / osquery-configuration

  View on GitHub
  A repository for using osquery for incident detection and response
  ☆888Sep 8, 2025Updated 7 months ago
• iovisor / bcc

  View on GitHub
  BCC - Tools for BPF-based Linux IO analysis, networking, monitoring, and more
  ☆22,328Mar 31, 2026Updated last week
• draios / sysdig

  View on GitHub
  Linux system exploration and troubleshooting tool with first class support for containers
  ☆8,233Apr 1, 2026Updated last week
• gdestuynder / audisp-json

  View on GitHub
  ☆41Jan 15, 2021Updated 5 years ago
• netlabel / netlabel_tools

  View on GitHub
  Tools to manage the Linux NetLabel subsystem
  ☆28Aug 30, 2025Updated 7 months ago
• util-linux / util-linux

  View on GitHub
  ☆3,120Updated this week
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• threathunters-io / laurel

  View on GitHub
  Transform Linux Audit logs for SIEM usage
  ☆824Mar 5, 2026Updated last month
• jallen89 / theia-cdm-samples

  View on GitHub
  ☆11May 3, 2019Updated 6 years ago
• linux-pam / linux-pam

  View on GitHub
  Linux PAM (Pluggable Authentication Modules for Linux) project
  ☆766Mar 23, 2026Updated 3 weeks ago
• teoseller / osquery-attck

  View on GitHub
  Mapping the MITRE ATT&CK Matrix with Osquery
  ☆809May 11, 2023Updated 2 years ago
• SigmaHQ / sigma

  View on GitHub
  Main Sigma Rule Repository
  ☆10,279Apr 1, 2026Updated last week
• wazuh / wazuh

  View on GitHub
  Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
  ☆15,200Updated this week
• alphagov / puppet-auditd

  View on GitHub
  Puppet module for Auditd
  ☆41Jan 26, 2021Updated 5 years ago
• shadow-maint / shadow

  View on GitHub
  Upstream shadow tree
  ☆376Apr 1, 2026Updated last week
• aide / aide

  View on GitHub
  aide source code
  ☆707Jan 31, 2026Updated 2 months ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• lkrg-org / lkrg

  View on GitHub
  Linux Kernel Runtime Guard
  ☆585Mar 17, 2026Updated 3 weeks ago
• a13xp0p0v / kernel-hardening-checker

  View on GitHub
  A tool for checking the security hardening options of the Linux kernel
  ☆2,056Feb 28, 2026Updated last month
• microsoft / SysmonForLinux

  View on GitHub
  Sysmon for Linux
  ☆2,089Updated this week
• falcosecurity / libs

  View on GitHub
  libsinsp, libscap, the kernel module driver, and the eBPF driver sources
  ☆305Updated this week
• linux-lock / bpflock

  View on GitHub
  bpflock - eBPF driven security for locking and auditing Linux machines
  ☆151Feb 16, 2022Updated 4 years ago
• iovisor / ply

  View on GitHub
  Dynamic Tracing in Linux
  ☆1,028Aug 22, 2025Updated 7 months ago
• CyberSift / OSQUERY-PACKS

  View on GitHub
  Osquery Packs we use for customer security hardening
  ☆12Jun 30, 2025Updated 9 months ago