An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
☆196Sep 23, 2024Updated last year
Alternatives and similar repositories for community-id-spec
Users that are interested in community-id-spec are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Zeek support for Community ID flow hashing.☆37Jul 11, 2023Updated 2 years ago
- Dockerized Zeek☆12Mar 9, 2024Updated 2 years ago
- Go implementation of the Community ID flow hashing standard☆22Apr 17, 2025Updated last year
- Bro analyzer that detects Google's QUIC protocol☆11Mar 2, 2021Updated 5 years ago
- A Python implementation of the Community ID flow hashing standard☆24Nov 29, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Generate network maps from packet captures☆30Sep 15, 2019Updated 6 years ago
- How to Zeek Sysmon Logs!☆102Feb 12, 2022Updated 4 years ago
- Zeek package for tracking long connections to report them before they have completed.☆31Nov 25, 2025Updated 5 months ago
- Enables Zeek to communicate with Tenzir☆11Jul 20, 2023Updated 2 years ago
- A Bro package to identify connections that are bursting (lots of data and transferring quickly).☆13Oct 15, 2020Updated 5 years ago
- The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.☆143Updated this week
- Private Search Set (PSS) is an extension to standard Bloom filter or a standalone hash file to describe and share private set.☆16Jan 10, 2025Updated last year
- A simple way of detecting multithreaded exfiltration in Zeek.☆15May 1, 2025Updated last year
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆40Jun 20, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A set of Zeek scripts to detect ATT&CK techniques.☆621Jun 26, 2024Updated last year
- Validate if afpacket PACKET_FANOUT_HASH is working properly☆25May 19, 2022Updated 3 years ago
- Real-time, container-based file scanning at enterprise scale☆984Mar 19, 2026Updated last month
- Zeek Training Materials/Products☆44Apr 21, 2026Updated 2 weeks ago
- Suricata rule and intel index☆33Mar 17, 2026Updated last month
- Top DNS Measurement for Bro☆10Aug 22, 2020Updated 5 years ago
- C++ parser generator for dissecting protocols & files.☆291Apr 27, 2026Updated last week
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆122Jul 12, 2021Updated 4 years ago
- Scirius is a web application for Suricata ruleset management and threat hunting.☆675Dec 23, 2025Updated 4 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- This module detects HTTP requests that are non RFC compliant and used for smuggling☆12Mar 16, 2023Updated 3 years ago
- Bro/Zeek integration with osquery☆94Nov 2, 2020Updated 5 years ago
- GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor☆80Sep 13, 2023Updated 2 years ago
- Firepit - STIX Columnar Storage☆18Jun 5, 2024Updated last year
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆33Apr 24, 2026Updated last week
- Threat hunting repo for my independent study on threat hunting with OSQuery☆27Jan 16, 2018Updated 8 years ago
- 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.☆270Mar 17, 2023Updated 3 years ago
- Check IOC provided by a MISP instance on Suricata events☆18Jun 4, 2019Updated 6 years ago
- A RESTful API frontend for Stenographer☆54Dec 7, 2022Updated 3 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search☆490Apr 25, 2026Updated last week
- Full packet capture with flow cutoff, rotation, and compression☆15Sep 18, 2018Updated 7 years ago
- Zeek package to generate a SMB client fingerprint☆27May 5, 2020Updated 5 years ago
- ** README ** This repo has MOVED to https://github.com/quadrantsec/sagan☆229Feb 9, 2021Updated 5 years ago
- ☆58Mar 4, 2022Updated 4 years ago
- Cyber Analytics Repository☆1,001May 16, 2025Updated 11 months ago
- Repository to provide files related to our blog articles.☆16May 26, 2025Updated 11 months ago