A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for further processing!
☆40Aug 18, 2022Updated 3 years ago
Alternatives and similar repositories for zeek2es
Users that are interested in zeek2es are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A Zeek plugin to POST logs over HTTP.☆13Feb 10, 2020Updated 6 years ago
- A Sigma based detection pipeline☆12Dec 15, 2023Updated 2 years ago
- Zeek package to create JSON formatted logs to stream into data analysis systems.☆31Dec 3, 2025Updated 5 months ago
- Zeek support for Community ID flow hashing.☆37Jul 11, 2023Updated 2 years ago
- A simple way of detecting multithreaded exfiltration in Zeek.☆15May 1, 2025Updated last year
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Feb 6, 2025Updated last year
- Kafka connector to sync Zed lakes to and from Kafka topics☆18Dec 4, 2025Updated 5 months ago
- Mapping Corelight or Zeek data to Elastic Common Schema logs☆12Updated this week
- HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.☆79Aug 22, 2023Updated 2 years ago
- Corelight-Ansible-Roles are a collection of Ansible Roles and playbooks that install, configure, run and manage a variety of Corelight, S…☆16Jun 15, 2021Updated 4 years ago
- A Zeek package that detects Zoom logins and meeting joins☆12Apr 15, 2020Updated 6 years ago
- OSSEM Data Dictionaries☆66Jan 22, 2025Updated last year
- Zeek-Formatted Threat Intelligence Feeds☆398Updated this week
- Mapping NSM rules to MITRE ATT&CK☆73Aug 29, 2020Updated 5 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…☆62Dec 16, 2023Updated 2 years ago
- Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)☆97Apr 25, 2025Updated last year
- ☆58Mar 4, 2022Updated 4 years ago
- Open source endpoint agent providing host information to Zeek. [v2]☆91Apr 30, 2026Updated 3 weeks ago
- A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…☆61Nov 26, 2025Updated 5 months ago
- Enables Zeek to communicate with Tenzir☆11Jul 20, 2023Updated 2 years ago
- Log4j Exploit Detection Logic for Zeek☆19Nov 25, 2025Updated 5 months ago
- ☆14Jan 14, 2026Updated 4 months ago
- Proof of concept communications from C# via a web browser process☆21Feb 15, 2019Updated 7 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆32Sep 16, 2024Updated last year
- Zeek plugin to generate data on per-packet sizes and intervals☆14Apr 21, 2020Updated 6 years ago
- ☆13Feb 25, 2021Updated 5 years ago
- Windows Security Logging☆43Jul 17, 2022Updated 3 years ago
- A Spicy protocol analyzer for WireGuard☆28Aug 11, 2020Updated 5 years ago
- Python library to get the Alexa rank of the domain of any URL☆10Jan 28, 2013Updated 13 years ago
- Repository to provide files related to our blog articles.☆16May 26, 2025Updated 11 months ago
- High fidelity JA3 & JA3S combinations for known botnets and alike☆12Feb 14, 2019Updated 7 years ago
- A Zeek script to generate features based on timing, volume and metadata for traffic classification.☆60Nov 8, 2020Updated 5 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆124Nov 19, 2020Updated 5 years ago
- Microsoft-Defender-for-IoT☆14May 26, 2025Updated 11 months ago
- Tool to perform differential fault analysis attack (DFA) on whiteboxes with external encodings.☆16Feb 10, 2023Updated 3 years ago
- Zeek Analysis Tools (ZAT): Processing and analysis of Zeek network data with Pandas, scikit-learn, Kafka and Spark☆455Mar 19, 2026Updated 2 months ago
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…☆172May 23, 2023Updated 3 years ago
- ☆33Feb 26, 2022Updated 4 years ago
- ☆13Oct 7, 2019Updated 6 years ago