A Linux Auditd rule set mapped to MITRE's Attack Framework
-
Updated
Jul 8, 2020
#
auditd
Here are 59 public repositories matching this topic...
Transform Linux Audit logs for SIEM usage
-
Updated
Oct 30, 2024 - Rust
Ansible role to apply a security baseline. Systemd edition.
security
ansible
vagrant
debian
ubuntu
systemd
centos
hardening
auditd
security-hardening
information-security
hacktoberfest
amazon-linux
openscap
security-tools
security-compliance
almalinux
-
Updated
Nov 5, 2024 - Jinja
A Linux Auditd rule set mapped to MITRE's Attack Framework
-
Updated
Oct 10, 2023
Hardening the Linux operating system for Debian like distributions.
-
Updated
Jun 10, 2024 - Shell
Install and configure user mode auditd tools
-
Updated
Mar 12, 2023 - HTML
ArchLinux setup which focuses on desktop security
-
Updated
Oct 27, 2024 - Python
Demo for Elastic's Auditbeat and SIEM
-
Updated
Jun 15, 2021 - HCL
Proof-of-Concept to evade auditd by writing /proc/PID/mem
-
Updated
Aug 21, 2023 - C
Ansible role to install auditbeat for security monitoring. (Ruleset included)
security
ansible
elasticsearch
monitoring
ansible-role
siem
auditd
elk-stack
auditbeat
auditd-attack
-
Updated
Nov 16, 2023 - Jinja
Proof-of-Concept to evade auditd by tampering via ptrace
-
Updated
Aug 3, 2023 - C
A small Go program to read /var/log/audit/audit.log
go
linux
golang
security-audit
auditd
golang-tools
golang-application
linux-tools
security-tools
ci-gocd
-
Updated
Nov 12, 2018 - Go
Improve this page
Add a description, image, and links to the auditd topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the auditd topic, visit your repo's landing page and select "manage topics."