BRO/Zeek IDS content pack contains pipeline rules, a stream, a dashboard displaying interesting activity, and a syslog tcp input to capture and index BRO/Zeek logs coming from a remote sensor.
☆19Apr 12, 2020Updated 5 years ago
Alternatives and similar repositories for graylog-zeek-content-pack
Users that are interested in graylog-zeek-content-pack are comparing it to the libraries listed below
Sorting:
- brocon-15 scripts☆13Apr 3, 2017Updated 8 years ago
- Various Bro scripts☆37May 20, 2014Updated 11 years ago
- Broctl plugin for automatically executing 'setcap' on each node after an install☆13Dec 18, 2020Updated 5 years ago
- Bro stuff.☆12May 24, 2016Updated 9 years ago
- ☆14Sep 15, 2017Updated 8 years ago
- ☆19Apr 13, 2022Updated 3 years ago
- scan-detection policies for bro☆16Jan 16, 2025Updated last year
- Analysis scripts for the Bro Intrusion Detection System☆59Feb 26, 2014Updated 12 years ago
- ☆16Feb 13, 2020Updated 6 years ago
- A package manager for Zeek☆47Jan 8, 2026Updated last month
- HTML source files demonstrating HTML5 postmessage vulnerabilities☆20Jul 26, 2020Updated 5 years ago
- Find kernel32 base and API addresses. Simple C++ implementation☆23Apr 7, 2022Updated 3 years ago
- JoeSandbox-Bro is a simple bro script which extracts files from your internet connection and analyzes them automatically on Joe Sandbox☆44Jun 6, 2019Updated 6 years ago
- Various Bro scripts☆96Jul 8, 2016Updated 9 years ago
- Detect Phishing with Bro IDS☆18Feb 1, 2017Updated 9 years ago
- A series of Bro Scripts created for detection purposes.☆19Nov 18, 2016Updated 9 years ago
- A program that uses xapian to index the flat file databases used by nfdump or flow-tools☆36Mar 26, 2018Updated 7 years ago
- Connectors for the Zeek NetControl framework☆19Feb 4, 2025Updated last year
- ☆24Mar 29, 2020Updated 5 years ago
- the most basic DLL ever to pop a cmd.☆24Jul 11, 2020Updated 5 years ago
- No elephant flows - flow shunting for Arista switches using EOS API☆27Apr 27, 2021Updated 4 years ago
- Bro-IDS scripts☆50Sep 12, 2016Updated 9 years ago
- Scripts for Bro IDS and ELK Stack☆57Sep 2, 2015Updated 10 years ago
- Bro Intel Feed Linter☆26Aug 30, 2019Updated 6 years ago
- Crack your macros like the math pros.☆33Feb 14, 2017Updated 9 years ago
- ☆30Aug 24, 2025Updated 6 months ago
- A collection of bro_scripts and signatures☆27Jun 26, 2019Updated 6 years ago
- Automating payload generation for OSEP labs and exam.☆34Jun 30, 2022Updated 3 years ago
- Code samples of .NET shellcode injections, weaponized for use via WebDav and mshta.exe.☆37Jan 23, 2020Updated 6 years ago
- The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.☆143Feb 27, 2026Updated last week
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Mar 1, 2023Updated 3 years ago
- A collection of Bro scripts I've written☆41Jun 5, 2015Updated 10 years ago
- 🌐 A web app that allows you to create smart bookmarks, commands and aliases by pointing your web browser's default search engine at a ru…☆15Jul 12, 2021Updated 4 years ago
- A collection of Cobalt Strike Malleable C2 profiles☆36Oct 13, 2020Updated 5 years ago
- ☆40Nov 1, 2021Updated 4 years ago
- DLL Hijacking and Mock directories technique to bypass Windows UAC security feature and getting high-level privileged reverse shell. Secu�…☆42May 18, 2024Updated last year
- Fast incident overview☆41Feb 11, 2017Updated 9 years ago
- Utility for parsing Bro log files into CSV or JSON format☆41Jan 12, 2023Updated 3 years ago
- Splunk scripted input for opening a backconnect shell on a remote forwarder☆45Nov 18, 2020Updated 5 years ago