alias454/graylog-zeek-content-pack external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

alias454/graylog-zeek-content-pack

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/alias454/graylog-zeek-content-pack)

Close

alias454 / graylog-zeek-content-packView on GitHubMore

• External links
• Readme badge

BRO/Zeek IDS content pack contains pipeline rules, a stream, a dashboard displaying interesting activity, and a syslog tcp input to capture and index BRO/Zeek logs coming from a remote sensor.

☆19Apr 12, 2020Updated 6 years ago

Alternatives and similar repositories for graylog-zeek-content-pack

Users that are interested in graylog-zeek-content-pack are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• initconf / brocon-15

  View on GitHub
  brocon-15 scripts
  ☆13Apr 3, 2017Updated 9 years ago
• michaelpeacock / kafka-sigma-streams

  View on GitHub
  ☆19Apr 13, 2022Updated 4 years ago
• deltaray / bawk

  View on GitHub
  ☆14Sep 15, 2017Updated 8 years ago
• initconf / scan-NG

  View on GitHub
  scan-detection policies for bro
  ☆16Jan 16, 2025Updated last year
• zeek / package-manager

  View on GitHub
  A package manager for Zeek
  ☆47Updated this week
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• johannestaas / rust-passivedns

  View on GitHub
  Passivedns monitor implementation in Rust.
  ☆12Apr 21, 2016Updated 10 years ago
• PingTrip / broctl-setcap

  View on GitHub
  Broctl plugin for automatically executing 'setcap' on each node after an install
  ☆13Dec 18, 2020Updated 5 years ago
• fatemabw / bro-scripts

  View on GitHub
  ☆16Feb 13, 2020Updated 6 years ago
• ncsa / bro-doctor

  View on GitHub
  ☆24Mar 29, 2020Updated 6 years ago
• sooshie / bro-scripts

  View on GitHub
  Various Bro scripts
  ☆96Jul 8, 2016Updated 9 years ago
• zeek / zeek-netcontrol

  View on GitHub
  Connectors for the Zeek NetControl framework
  ☆19Feb 4, 2025Updated last year
• fox-it / bro-scripts

  View on GitHub
  Bro-IDS scripts
  ☆50Sep 12, 2016Updated 9 years ago
• arian / Rss-Parser

  View on GitHub
  This is a simple PHP Rss Parser
  ☆13Oct 14, 2015Updated 10 years ago
• joesecurity / Joe-Sandbox-Bro

  View on GitHub
  JoeSandbox-Bro is a simple bro script which extracts files from your internet connection and analyzes them automatically on Joe Sandbox
  ☆44Jun 6, 2019Updated 7 years ago
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• leonjza / PHPNessusNG

  View on GitHub
  PHP wrapper functions for interfacing with the Nessus V6.x API
  ☆15Feb 14, 2017Updated 9 years ago
• Cosive / cti-toolkit

  View on GitHub
  CERT Australia Cyber Threat Intelligence (CTI) Toolkit
  ☆15Nov 11, 2017Updated 8 years ago
• ncsa / dumbno

  View on GitHub
  No elephant flows - flow shunting for Arista switches using EOS API
  ☆27Apr 27, 2021Updated 5 years ago
• mixmodeai / bro_intel_linter

  View on GitHub
  Bro Intel Feed Linter
  ☆26Aug 30, 2019Updated 6 years ago
• TravisFSmith / MyBroElk

  View on GitHub
  Scripts for Bro IDS and ELK Stack
  ☆56Sep 2, 2015Updated 10 years ago
• hosom / bro-phishing

  View on GitHub
  Detect Phishing with Bro IDS
  ☆18Feb 1, 2017Updated 9 years ago
• hosom / bro-scripts

  View on GitHub
  Bro stuff.
  ☆12May 24, 2016Updated 10 years ago
• zeek / packages

  View on GitHub
  The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.
  ☆144Updated this week
• packetb-old / gopacket

  View on GitHub
  Fork of http://godoc.org/code.google.com/p/gopacket
  ☆14Jul 23, 2020Updated 5 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• simpleweb / acts_as_pushable

  View on GitHub
  Add iOS & Android device and push notification support in your Rails application.
  ☆12Mar 6, 2017Updated 9 years ago
• cmatthewbrooks / pyiocutils

  View on GitHub
  A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).
  ☆16Dec 19, 2018Updated 7 years ago
• dyurk / splogTASH

  View on GitHub
  SPL to lucene translator
  ☆15Jan 24, 2015Updated 11 years ago
• fbb-git / stealth

  View on GitHub
  Stealth is a File Integrity scanner performing its work in a stealthy way.
  ☆12Jun 25, 2018Updated 7 years ago
• cocomelonc / 2022-04-02-malware-injection-18

  View on GitHub
  Find kernel32 base and API addresses. Simple C++ implementation
  ☆24Apr 7, 2022Updated 4 years ago
• bornhack / badge2017

  View on GitHub
  The BornHack 2017 Badge
  ☆10Aug 4, 2018Updated 7 years ago
• LiamRandall / BroMalware-Exercise

  View on GitHub
  ☆84Aug 7, 2013Updated 12 years ago
• DfirJos / CnC-detection

  View on GitHub
  Detecting PowerShell Empire, Metasploit Meterpreter and Cobalt Strike agents by payload size sequence analysis and host correlation
  ☆14Aug 17, 2018Updated 7 years ago
• yannh / openbsd_immutable_router

  View on GitHub
  Packer/Ansible configuration for the automatic generation of an immutable OpenBSD image for a full router/firewall server
  ☆41Jun 20, 2020Updated 5 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• salesforce / bro-sysmon

  View on GitHub
  How to Zeek Sysmon Logs!
  ☆102Feb 12, 2022Updated 4 years ago
• linuxdynasty / Linuxdynasty

  View on GitHub
  Bunch of Scripts that I write and sometimes maintain
  ☆12Jun 25, 2021Updated 4 years ago
• emileaben / eyeballtrace

  View on GitHub
  Do RIPE Atlas traceroutes from networks with significant user populations in a country
  ☆14Jun 20, 2018Updated 7 years ago
• michaelneale / lapstone-tunnel

  View on GitHub
  Using cloudflare workers and DOs to make a https tunnel that scales
  ☆26Nov 22, 2025Updated 6 months ago
• corelight / conn-burst

  View on GitHub
  A Bro package to identify connections that are bursting (lots of data and transferring quickly).
  ☆13Oct 15, 2020Updated 5 years ago
• tenzir / zeek-tenzir

  View on GitHub
  Enables Zeek to communicate with Tenzir
  ☆11Jul 20, 2023Updated 2 years ago
• shurmajee / postmessage-vulnerability-demo

  View on GitHub
  HTML source files demonstrating HTML5 postmessage vulnerabilities
  ☆20Jul 26, 2020Updated 5 years ago