tracee Alternatives

tracee is described as 'Detect suspicious behaviors at runtime using eBPF tracing and research-driven behavioral signatures' and is an app in the security & privacy category. There are more than 10 alternatives to tracee for a variety of platforms, including Linux, Mac, Windows, SaaS and Web-based apps. The best tracee alternative is CrowdStrike Falcon. It's not free, so if you're looking for a free alternative, you could try Qtap or Sysdig Falco. Other great apps like tracee are Symantec Endpoint Protection, ESET PROTECT Advanced, Check Point Endpoint Security and Palo Alto Networks Prisma Cloud.

More about tracee
Copy a direct link to this comment to your clipboard
tracee alternatives page was last updated

Alternatives list

  1. CrowdStrike Falcon icon

    CrowdStrike Falcon

     3 likes
    Copy a direct link to this comment to your clipboard

    CrowdStrike Falcon Host integrates seamlessly into your current environment, enabling your security team to effectively and efficiently detect and block adversary activity – ultimately preventing damage to your organization through SaaS-based next-generation endpoint protection.

    59 CrowdStrike Falcon alternatives

    Cost / License

    • Paid
    • Proprietary

    Application types

    Platforms

    • Mac
    • Windows
    • Linux
     

    • CrowdStrike Falcon is the most popular Windows, Mac & Linux alternative to tracee.

    • CrowdStrike Falcon is the most popular commercial alternative to tracee.

    • CrowdStrike Falcon is Paid and Proprietarytracee is Free and Open Source
  2. Symantec Endpoint Protection icon

    Symantec Endpoint Protection

     10 likes
    Copy a direct link to this comment to your clipboard

    Symantec Endpoint Protection provides business antivirus protection with advanced threat prevention, delivering unmatched defense against malware for laptops, desktops and servers.

    Cost / License

    • Subscription
    • Proprietary

    Application type

    Platforms

    • Mac
    • Windows
    Symantec Endpoint Protection screenshot 1
     
  4. ESET PROTECT Advanced icon

    ESET PROTECT Advanced

     2 likes
    Copy a direct link to this comment to your clipboard

    Best-in-class endpoint protection against ransomware & zero-day threats. Cross-platform solution with easy-to-use cloud or on-prem management, server security, advanced threat defense and full disk encryption.

    Cost / License

    • Subscription
    • Proprietary

    Application types

    Platforms

    • Software as a Service (SaaS)
    • Online
    ESET PROTECT Advanced screenshot 1
     

    • ESET PROTECT Advanced is the most popular Web-based & SaaS alternative to tracee.

    • ESET PROTECT Advanced is Paid and Proprietarytracee is Free and Open Source
  5. Ad
    Screenshot
    ESET PROTECT Advanced icon
    ESET PROTECT Advanced

    Best-in-class endpoint protection against ransomware & zero-day threats. Cross-platform solution with easy-to-use cloud or on-prem management, server security, advanced threat defense and full disk encryption.

    https://www.eset.com
    Learn More
  6. Check Point Endpoint Security icon

    Check Point Endpoint Security

     1 like
    Copy a direct link to this comment to your clipboard

    Check Point is a leader in network security software, firewall solutions, VPN solutions, endpoint security, network protection, security management, data protection and Pointsec data encryption technologies.

    Cost / License

    • Paid
    • Proprietary

    Application type

    Platforms

    • Windows
     
  7. Qtap icon

    Qtap

     Like
    Copy a direct link to this comment to your clipboard

    An eBPF agent that captures pre-encrypted network traffic, providing rich context about egress connections and their originating processes.

    Cost / License

    • Free
    • Open Source

    Platforms

    • Linux
    • Docker
    Qtap screenshot 1
     

    • Qtap is the most popular Open Source & free alternative to tracee.

    • Qtap is Free and Open Sourcetracee is also Free and Open Source
    • Qtap is Security-focusedtracee is not according to our users
  8. Sysdig Falco icon

    Sysdig Falco

     Like
    Copy a direct link to this comment to your clipboard

    Falco is the first runtime security project to join CNCF as an incubation-level project. Falco acts as a security camera detecting unexpected behavior, intrusions, and data theft in real time.

    Cost / License

    • Free
    • Open Source

    Platforms

    • Linux
    Sysdig Falco screenshot 1
     
  11. AURORA Agent icon

    AURORA Agent

     Like
    Copy a direct link to this comment to your clipboard

    The AURORA Agent is a lightweight and customisable endpoint agent based on Sigma. It uses Event Tracing for Windows (ETW) to recreate events that are very similar to the events generated by Microsoft’s Sysmon and applies Sigma rules and IOCs to them.

    Cost / License

    • Freemium (Subscription)
    • Proprietary

    Platforms

    • Software as a Service (SaaS)
    • Online
    AURORA Agent screenshot 1
     
  12. Qpoint icon

    Qpoint

     Like
    Copy a direct link to this comment to your clipboard

    See through encryption to map dependencies, identify sensitive data sharing, and enforce egress controls.

    Cost / License

    • Freemium
    • Proprietary

    Platforms

    • Linux
    • Docker
    • Kubernetes
    • Self-Hosted
    Qpoint screenshot 1
     

    • Qpoint is the most popular Self-Hosted alternative to tracee.

    • Qpoint is Freemium and Proprietarytracee is Free and Open Source
    • Qpoint is Security-focusedtracee is not according to our users
  13. NeuVector icon

    NeuVector

     Like
    Copy a direct link to this comment to your clipboard

    NeuVector Full Lifecycle Container Security Platform delivers the only cloud-native security with end-to-end protection from DevOps vulnerability protection to automated run-time security, and featuring a true Layer 7 container firewall.

    Cost / License

    • Free
    • Open Source

    Platforms

    • Linux
    • Self-Hosted
    NeuVector screenshot 1
     
  14. vet icon

    vet

     Like
    Copy a direct link to this comment to your clipboard

    vet is a tool for protecting against open source software supply chain attacks. To adapt to organizational needs, it uses an opinionated policy expressed as Common Expressions Language and extensive package security metadata including:

    Cost / License

    • Free
    • Open Source

    Platforms

    • Mac
    • Linux
    • Homebrew
    vet screenshot 1
     
11 of 11 tracee alternatives