Alternatives and similar repositories for osquery-toolchain

Users that are interested in osquery-toolchain are comparing it to the libraries listed below

• linux-audit / audit-testsuite
  A simple, self-contained regression test suite for the Linux Kernel's audit subsystem
  ☆23Updated last month
• trailofbits / ebpfpub
  ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
  ☆117Updated 2 years ago
• the-tcpdump-group / tcpslice
  tcpslice concatenates multiple pcap files together, or extracts time slices from one or more pcap files.
  ☆77Updated this week
• theopolis / build-anywhere
  Scripts for building compilers that run anywhere, which build things that run anywhere
  ☆93Updated 6 years ago
• laf0rge / udtrace
  UNIX domain socket tracing LD_PRELOAD wrapper, mirror from git://git.gnumonks.org/udtrace
  ☆51Updated 6 years ago
• dirtyharrycallahan / pystrace
  ☆27Updated 9 years ago
• kernelslacker / x86info
  x86info : x86 processor register decoder.
  ☆45Updated 4 months ago
• microsoft / ipe
  IPE is a Linux Security Module (LSM), which allows for a configurable policy to enforce integrity requirements on the whole system. IPE b…
  ☆65Updated 5 months ago
• zenfish / ipmi
  IPMI stuff from DARPA work
  ☆74Updated 2 years ago
• landhb / DrawBridge
  Layer 4 Single Packet Authentication Linux kernel module utilizing Netfilter hooks and kernel supported Berkeley Packet Filters (BPF)
  ☆115Updated last year
• dest-unreach / socat2
  socat version 2
  ☆10Updated 13 years ago
• elceef / dhcpf
  Passive DHCP fingerprinting implementation
  ☆51Updated 9 years ago
• milabs / stamina
  (Linux Kernel) Stack Monitoring Tool
  ☆47Updated 3 years ago
• hughsie / python-uswid
  A tiny tool for embedding CoSWID tags in EFI binaries
  ☆25Updated 3 months ago
• mellow-hype / santa-linux
  A proof-of-concept Linux clone of Santa, Google's binary authorization system for macOS
  ☆32Updated 2 years ago
• gdestuynder / audisp-json
  ☆41Updated 4 years ago
• ExtraHop / rpcapd
  ExtraHop Networks' Packet Forwarder, forked from Wireshark's RPCAPD
  ☆27Updated 11 years ago
• DNS-OARC / dnsjit
  Moved to https://codeberg.org/DNS-OARC/dnsjit
  ☆60Updated 3 weeks ago
• ThomasHabets / injcode
  Inject code into a running process
  ☆119Updated 4 years ago
• rfc1036 / zebra-dump-parser
  Parser for zebra/MRT BGP routes dumps.
  ☆40Updated 8 years ago
• pathtofile / bpf-pipesnoop
  Example program using eBPF to log data being based in using shell pipes
  ☆41Updated 4 years ago
• fedoraredteam / elem
  Enterprise Linux Exploit Mapper
  ☆28Updated 7 years ago
• libyal / libqcow
  Library and tools to access the QEMU Copy-On-Write (QCOW) image format
  ☆59Updated 9 months ago
• t2mune / nield
  A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.
  ☆32Updated 11 months ago
• robertdavidgraham / dnsparse
  Parses DNS responses in a secure, rigorous manner
  ☆21Updated 5 years ago
• kohler / ipsumdump
  Ipsumdump and other programs for command-line network trace manipulation.
  ☆38Updated last year
• isc-projects / forge
  ISC Forge is an open source DHCP conformance validation framework, primarily used for testing ISC Kea.
  ☆37Updated last month
• usbarmory / armory-boot
  USB armory - boot loader
  ☆36Updated last month
• wvu / ye-olde-bsd
  Docker environment for 4.3BSD on VAX.
  ☆19Updated 2 years ago
• stevegrubb / security-assessor
  This is a set of scripts that scan a Linux system looking for security and robustness problems.
  ☆17Updated 10 months ago