CriticalPathSecurity / zeek-scriptsLinks
Bro Detection Scripts
☆10Updated 4 years ago
Alternatives and similar repositories for zeek-scripts
Users that are interested in zeek-scripts are comparing it to the libraries listed below
Sorting:
- Threat Feed Aggregation, Made Easy☆168Updated 5 years ago
- Cuckoo Sandbox is an automated dynamic malware analysis system☆107Updated 5 years ago
- Evolving directions on building the best Open Source Forensics VM☆161Updated 7 years ago
- Prototypes for MineMeld nodes☆39Updated 3 years ago
- CIF v3 -- the fastest way to consume threat intelligence☆182Updated 2 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 6 years ago
- Main Build directory☆179Updated 6 years ago
- Collecting & Hunting for IOCs with gusto and style☆116Updated 7 years ago
- Splunk Boss of the SOC v1 data set.☆111Updated 7 years ago
- CrowdStrike Falcon Orchestrator provides automated workflow and response capabilities☆187Updated last year
- Sandia Cyber Omni Tracker (SCOT)☆251Updated 10 months ago
- ☆48Updated 9 years ago
- CIFv3 DeploymentKit☆64Updated 5 years ago
- Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing☆175Updated 4 years ago
- Bro scripts written by CrowdStrike Services☆148Updated 4 years ago
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- Bro script package to create JSON formatted logs to stream into data analysis systems.☆29Updated last year
- The Bro/Zeek language cheat sheet☆53Updated 12 years ago
- Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy c…☆128Updated 2 years ago
- ☆49Updated 5 years ago
- Salt States for Configuring the SIFT Workstation☆106Updated this week
- Engine of MineMeld☆140Updated 2 years ago
- Serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch.☆141Updated 2 years ago
- InvestigationPlaybookSpec☆72Updated 8 years ago
- An OpenTAXII Configuration for MISP☆83Updated 2 years ago
- ☆193Updated last year
- Carbon Black Feeds☆73Updated 2 years ago
- A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.☆247Updated 4 years ago
- ☆17Updated 5 years ago
- All the IOC's I have gathered which are used directly involved coronavirus / covid-19 / SARS-CoV-2 cyber attack campaigns☆65Updated 4 years ago