fox-it / bro-scripts
Bro-IDS scripts
☆50Updated 8 years ago
Alternatives and similar repositories for bro-scripts:
Users that are interested in bro-scripts are comparing it to the libraries listed below
- This is a script module for Bro that encapsulates and detects activity related to the Mandiant APT1 report.☆47Updated 11 years ago
- ☆71Updated 3 years ago
- Script for generating Bro intel files from pdf or html reports☆76Updated 9 years ago
- Bro scripts to be shared with the community☆109Updated 12 years ago
- brocon-15 scripts☆13Updated 7 years ago
- ☆75Updated 3 years ago
- Various Bro scripts☆96Updated 8 years ago
- A collection of Bro scripts I've written☆40Updated 9 years ago
- Threat Intelligence distribution☆30Updated 9 years ago
- Network Forensics Bro scripts & pcap samples☆62Updated 11 years ago
- Meeting notes☆15Updated 8 years ago
- Analysis scripts for the Bro Intrusion Detection System☆59Updated 11 years ago
- (OBSOLETE) Plugins for Bro☆53Updated 7 years ago
- ☆85Updated 11 years ago
- integrating bro into yara☆33Updated 10 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- Bro Snippets☆21Updated 10 years ago
- Scripts for Bro IDS and ELK Stack☆56Updated 9 years ago
- Improvements of/over the original rule2alert☆56Updated 10 years ago
- Bro Intel Feed Linter☆26Updated 5 years ago
- **BETA** A simple buildscript for network security monitoring on RHEL/CentOS☆31Updated 7 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 5 years ago
- Beholder is a shell script which installs and configures essentials to peer into your network activity.☆19Updated 7 years ago
- Python tools for IOC (Indicator of Compromise) handling☆96Updated 3 years ago
- Cyber Intel Management☆48Updated 7 years ago
- Unpack MIME attachments from a file and check them against virustotal.com☆45Updated 9 years ago
- Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc…☆79Updated 9 years ago
- Dockerfiles for NSM tools☆84Updated 7 years ago
- scan-detection policies for bro☆15Updated 2 months ago