auditd
There are 55 repositories under auditd topic.
bfuzzy/auditd-attack
A Linux Auditd rule set mapped to MITRE's Attack Framework
threathunters-io/laurel
Transform Linux Audit logs for SIEM usage
wagga40/Zircolite
A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs
konstruktoid/ansible-role-hardening
Ansible role to apply a security baseline. Systemd edition.
elastic/go-libaudit
go-libaudit is a library for communicating with the Linux Audit Framework.
bfuzzy1/auditd-attack
A Linux Auditd rule set mapped to MITRE's Attack Framework
Scribery/aushape
A library and a tool for converting audit logs to XML and JSON
chef-cookbooks/auditd
Install and configure user mode auditd tools
ITNerdbox/OS-Hardening
Hardening the Linux operating system for Debian like distributions.
Mosuan/AuditdPy
!!!不建议使用了,可以使用AuditBeat!!! Linux服务器命令监控辅助脚本,ElasticSearch + Logstash + Kibana + Redis + Auditd
xeraa/auditbeat-in-action
Demo for Elastic's Auditbeat and SIEM
codewhitesec/apollon
Proof-of-Concept to evade auditd by writing /proc/PID/mem
codewhitesec/daphne
Proof-of-Concept to evade auditd by tampering via ptrace
j91321/ansible-role-auditbeat
Ansible role to install auditbeat for security monitoring. (Ruleset included)
ShellCode33/ArchLinux-Hardened
ArchLinux setup which focuses on desktop security
robertdebock/ansible-role-auditd
Install and configure auditd on your system.
alex-leonhardt/auditr
A small Go program to read /var/log/audit/audit.log
dcsteve24/Ansible-Linux-Install-ELK-Stack
Installs 7.X ELK Stack on CentOS, RHEL, Ubuntu, or Debian
gurucleff/logstash-auditd
logstash 5.4 auditd filter
gibbs/puppet-auditd
Puppet auditd module
simp/pupmod-simp-auditd
The SIMP auditd Puppet Module
angelbarrera92/ansible-role-auditbeat
An Ansible Role that installs Auditbeat on RedHat/CentOS or Debian/Ubuntu.
appvia/auditd-container
Simple alpine image with auditd intended usage is to be used in combination with docker-desktop kubernetes to allow building a seccomp profiles with the kubernetes-sigs/security-profiles-operator
athoune/audisp-go
golang audisp client for auditd
lprat/SLDS
Secure Linux Debian Script
tricktux/file-audit-system
:eyes: File monitoring software that will log file access to configured directories on the system.
0mp/openbsm
OpenBSM-auditd-based plugin for Linux Audit audispd
buluma/ansible-role-auditd
Install and configure auditd on your system.
jquiterio/auquery
Linux auditd report and query
kpetku/terselog
Timestamped outbound IPv4 and IPv6 connection logs for humans
litew/linux-audit-notes
Notes about linux-audit subsystem (kernel & userspace)
mismailzz/CMAuditd_v2
CMAuditd (version 2) is a free and open-source GUI designed to be used with Auditd, which is the userspace component of the Linux Auditing System. It provides more functionality and a better interface than its previous version.
nshadov/auditd-configuration
Basic auditd configuration.
while-true-do/ansible-role-sys_audit
An Ansible Role to install and configure audit.
PLZENTERTEXT/autopsy-sigmaa-ingest-module
An Autopsy data source ingest module for detection of IOCs in EVTX for Windows and Auditd for Linux based on SIGMA Rules.
erickrr-bd/Logstash-configurations
Logstash's configuration files for certain applications/systems.