Alternatives and similar repositories for audit-userspace

Users that are interested in audit-userspace are comparing it to the libraries listed below

• linux-audit / audit-documentation
  Documentation and specifications
  ☆198Updated 6 months ago
• linux-audit / audit-kernel
  GitHub mirror of the Linux Kernel's audit repository
  ☆153Updated this week
• linux-application-whitelisting / fapolicyd
  File Access Policy Daemon
  ☆221Updated this week
• OpenSCAP / openscap
  NIST Certified SCAP 1.2 toolkit
  ☆1,551Updated 2 weeks ago
• Neo23x0 / auditd
  Best Practice Auditd Configuration
  ☆1,662Updated 6 months ago
• SELinuxProject / refpolicy
  SELinux Reference Policy v2
  ☆338Updated this week
• OpenSCAP / scap-workbench
  SCAP Scanner And Tailoring Graphical User Interface
  ☆234Updated last year
• CISecurity / OVALRepo
  ☆280Updated 2 years ago
• aide / aide
  aide source code
  ☆627Updated this week
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆277Updated 3 weeks ago
• bfuzzy / auditd-attack
  A Linux Auditd rule set mapped to MITRE's Attack Framework
  ☆802Updated 5 years ago
• Tripwire / tripwire-open-source
  Open Source Tripwire®
  ☆902Updated last year
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆462Updated last week
• threathunters-io / laurel
  Transform Linux Audit logs for SIEM usage
  ☆774Updated this week
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆657Updated this week
• jmpsec / osctrl
  Fast and efficient osquery management
  ☆456Updated 2 months ago
• salesforce / hassh
  HASSH is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints…
  ☆542Updated 3 months ago
• wazuh / wazuh-ruleset
  Wazuh - Ruleset
  ☆466Updated 10 months ago
• SELinuxProject / selinux-notebook
  The SELinux Notebook
  ☆642Updated 3 weeks ago
• shirkdog / pulledpork
  Pulled Pork for Snort and Suricata rule management (from Google code)
  ☆437Updated 4 years ago
• palantir / osquery-configuration
  A repository for using osquery for incident detection and response
  ☆857Updated 3 years ago
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆484Updated 3 weeks ago
• corelight / community-id-spec
  An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
  ☆181Updated 10 months ago
• jasonish / docker-suricata
  A Suricata Docker image.
  ☆291Updated 2 weeks ago
• adulau / ssldump
  ssldump - (de-facto repository gathering patches around the cyberspace)
  ☆251Updated last month
• OwlCyberDefense / refpolicy
  refpolicy has moved to https://github.com/SELinuxProject/refpolicy
  ☆127Updated 7 years ago
• cloudflare / sandbox
  Simple Linux seccomp rules without writing any code
  ☆497Updated last month
• mrash / fwknop
  Single Packet Authorization > Port Knocking
  ☆1,214Updated 10 months ago
• facebookincubator / nvdtools
  A set of tools to work with the feeds (vulnerabilities, CPE dictionary etc.) distributed by National Vulnerability Database (NVD)
  ☆466Updated last year
• OISF / libhtp
  LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces.
  ☆304Updated last month