Audit kernel repository

Clone this repo:
  1. a3f204c audit: add a Linux Audit specific README.md by Paul Moore · 3 weeks ago master
  2. 1c163f4 Linux 5.0 by Linus Torvalds · 3 weeks ago v5.0
  3. c027c7c Merge tag 'armsoc-fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/soc/soc by Linus Torvalds · 3 weeks ago
  4. e7c42a8 Merge branch 'x86-urgent-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip by Linus Torvalds · 3 weeks ago
  5. df49fd0 Merge tag 'scsi-fixes' of git://git.kernel.org/pub/scm/linux/kernel/git/jejb/scsi by Linus Torvalds · 3 weeks ago

Linux Kernel Audit Subsystem

https://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/audit.git
https://github.com/linux-audit/audit-kernel

The Linux Audit subsystem provides a secure logging framework that is used to capture and record security relevant events. It consists of a kernel component which generates audit records based on system activity, a userspace daemon which logs these records to a local file or a remote aggregation server, and a set of userspace tools to for audit log inspection and post-processing.

The main Linux Kernel README can be found at Documentation/admin-guide/README.rst

Online Resources

The canonical audit kernel repository is hosted by kernel.org:

There is also an officially maintained GitHub mirror:

Userspace Tools and Test Suites

The audit userspace tools and test suites are hosted by GitHub: