alias454 / graylog-zeek-content-packView external linksLinks
BRO/Zeek IDS content pack contains pipeline rules, a stream, a dashboard displaying interesting activity, and a syslog tcp input to capture and index BRO/Zeek logs coming from a remote sensor.
☆19Apr 12, 2020Updated 5 years ago
Alternatives and similar repositories for graylog-zeek-content-pack
Users that are interested in graylog-zeek-content-pack are comparing it to the libraries listed below
Sorting:
- brocon-15 scripts☆13Apr 3, 2017Updated 8 years ago
- Various Bro scripts☆37May 20, 2014Updated 11 years ago
- Passivedns monitor implementation in Rust.☆12Apr 21, 2016Updated 9 years ago
- Broctl plugin for automatically executing 'setcap' on each node after an install☆13Dec 18, 2020Updated 5 years ago
- Bro stuff.☆12May 24, 2016Updated 9 years ago
- scan-detection policies for bro☆16Jan 16, 2025Updated last year
- ☆19Apr 13, 2022Updated 3 years ago
- Analysis scripts for the Bro Intrusion Detection System☆59Feb 26, 2014Updated 11 years ago
- ☆16Feb 13, 2020Updated 6 years ago
- A package manager for Zeek☆47Jan 8, 2026Updated last month
- JoeSandbox-Bro is a simple bro script which extracts files from your internet connection and analyzes them automatically on Joe Sandbox☆45Jun 6, 2019Updated 6 years ago
- Various Bro scripts☆96Jul 8, 2016Updated 9 years ago
- A program that uses xapian to index the flat file databases used by nfdump or flow-tools☆36Mar 26, 2018Updated 7 years ago
- Detect Phishing with Bro IDS☆18Feb 1, 2017Updated 9 years ago
- Connectors for the Zeek NetControl framework☆19Feb 4, 2025Updated last year
- ☆24Mar 29, 2020Updated 5 years ago
- Bro-IDS scripts☆50Sep 12, 2016Updated 9 years ago
- Crack your macros like the math pros.☆33Feb 14, 2017Updated 8 years ago
- ☆84Aug 7, 2013Updated 12 years ago
- ☆30Aug 24, 2025Updated 5 months ago
- A collection of bro_scripts and signatures☆27Jun 26, 2019Updated 6 years ago
- Code samples of .NET shellcode injections, weaponized for use via WebDav and mshta.exe.☆37Jan 23, 2020Updated 6 years ago
- The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.☆144Jan 29, 2026Updated 2 weeks ago
- 🌐 A web app that allows you to create smart bookmarks, commands and aliases by pointing your web browser's default search engine at a ru…☆15Jul 12, 2021Updated 4 years ago
- ☆39Nov 1, 2021Updated 4 years ago
- A collection of Bro scripts I've written☆41Jun 5, 2015Updated 10 years ago
- A collection of Cobalt Strike Malleable C2 profiles☆36Oct 13, 2020Updated 5 years ago
- Fast incident overview☆41Feb 11, 2017Updated 9 years ago
- 🗡️ A multi-user malleable C2 framework targeting Windows. Written in C++ and Python☆45Feb 6, 2026Updated last week
- How to create VMware vagrant box☆11May 10, 2020Updated 5 years ago
- ☆11Aug 14, 2014Updated 11 years ago
- Toolbox and scripts for importing spreadsheets to a gdb and optionally publishing out to ArcGIS Online or ArcGIS for Server.☆11Jun 20, 2019Updated 6 years ago
- Fix for the CVE-2021-36934☆10Oct 15, 2021Updated 4 years ago
- ☆43Jan 2, 2023Updated 3 years ago
- .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…☆46Jul 29, 2024Updated last year
- Scans the internet for open FTP servers looking for common malware bot droppers and grabs them for sampling. Also provides support for up…☆49Feb 15, 2017Updated 8 years ago
- HashiCorp Consul, Nomad, Packer, Vagrant, Vault, and Terraform CLI snippets for pet☆15Nov 6, 2019Updated 6 years ago
- Speeding up identifying which binaries with a SUID flag may lead to root access☆15Aug 26, 2024Updated last year
- The evolution of NxRansomware☆11Jun 14, 2019Updated 6 years ago