Alternatives and similar repositories for osquery-toolchain

Users that are interested in osquery-toolchain are comparing it to the libraries listed below

• linux-audit / audit-testsuite
  A simple, self-contained regression test suite for the Linux Kernel's audit subsystem
  ☆23Updated last month
• trailofbits / ebpfpub
  ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
  ☆117Updated 2 years ago
• theopolis / build-anywhere
  Scripts for building compilers that run anywhere, which build things that run anywhere
  ☆93Updated 6 years ago
• the-tcpdump-group / tcpslice
  tcpslice concatenates multiple pcap files together, or extracts time slices from one or more pcap files.
  ☆75Updated 3 months ago
• kernelslacker / x86info
  x86info : x86 processor register decoder.
  ☆45Updated 3 months ago
• isc-projects / forge
  ISC Forge is an open source DHCP conformance validation framework, primarily used for testing ISC Kea.
  ☆37Updated 2 weeks ago
• t2mune / nield
  A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.
  ☆32Updated 10 months ago
• dest-unreach / socat2
  socat version 2
  ☆10Updated 12 years ago
• laf0rge / udtrace
  UNIX domain socket tracing LD_PRELOAD wrapper, mirror from git://git.gnumonks.org/udtrace
  ☆51Updated 6 years ago
• microsoft / ipe
  IPE is a Linux Security Module (LSM), which allows for a configurable policy to enforce integrity requirements on the whole system. IPE b…
  ☆65Updated 3 months ago
• elceef / dhcpf
  Passive DHCP fingerprinting implementation
  ☆51Updated 9 years ago
• DNS-OARC / dnsjit
  Engine for capturing, parsing and replaying DNS
  ☆60Updated 2 weeks ago
• RobinDavid / checksec
  Bash script to test executable properties like (PIE, RELRO, PaX, Canaries, ASLR). (Version derivated from the original one trapkit.de/too…
  ☆23Updated 11 years ago
• milabs / stamina
  (Linux Kernel) Stack Monitoring Tool
  ☆45Updated 3 years ago
• taviso / iknowthis
  iknowthis Linux SystemCall Fuzzer
  ☆20Updated 6 years ago
• bartman / elfgpg
  sign elf binaries with GPG
  ☆18Updated 8 years ago
• landhb / DrawBridge
  Layer 4 Single Packet Authentication Linux kernel module utilizing Netfilter hooks and kernel supported Berkeley Packet Filters (BPF)
  ☆114Updated last year
• hannob / meltdownspectre-patches
  Summary of the patch status for Meltdown / Spectre
  ☆350Updated 7 years ago
• riboseinc / retrace
  retrace is a versatile security vulnerability / bug discovery tool through monitoring and modifying the behavior of compiled binaries on …
  ☆61Updated 3 years ago
• hughsie / python-uswid
  A tiny tool for embedding CoSWID tags in EFI binaries
  ☆25Updated last month
• zenfish / ipmi
  IPMI stuff from DARPA work
  ☆74Updated 2 years ago
• intel / qemu-lite
  ☆70Updated 3 years ago
• robertdavidgraham / dnsparse
  Parses DNS responses in a secure, rigorous manner
  ☆21Updated 5 years ago
• bolinfest / opensnoop-native
  opensnoop in pure C using eBPF
  ☆100Updated 4 months ago
• gdestuynder / audisp-json
  ☆41Updated 4 years ago
• wvu / ye-olde-bsd
  Docker environment for 4.3BSD on VAX.
  ☆19Updated 2 years ago
• dpocock / elfpatch
  ELF binary patching utility
  ☆41Updated 9 years ago
• openbsm / bsmtrace
  BSM based intrusion detection system
  ☆39Updated 4 years ago
• chuckleb / virt-what
  Fork of RedHat project virt-what
  ☆23Updated 11 years ago
• pathtofile / bpf-pipesnoop
  Example program using eBPF to log data being based in using shell pipes
  ☆41Updated 4 years ago