module for osquery to load Bro logs into tables
☆28Apr 28, 2015Updated 10 years ago
Alternatives and similar repositories for brosquery
Users that are interested in brosquery are comparing it to the libraries listed below
Sorting:
- Extensions for Zeek's Intelligence Framework.☆11Mar 1, 2022Updated 4 years ago
- Logging plugin to bro to send logs to a Kafka broker☆20Nov 29, 2017Updated 8 years ago
- (OBSOLETE) Plugins for Bro☆53Sep 13, 2017Updated 8 years ago
- Bro/Zeek integration with osquery☆93Nov 2, 2020Updated 5 years ago
- Bro Intel Feed Linter�☆26Aug 30, 2019Updated 6 years ago
- Dockerfiles for NSM tools☆84Apr 14, 2017Updated 8 years ago
- Python script that gets IOC from MISP and converts it into BRO intel files.☆13Apr 17, 2016Updated 9 years ago
- The Auditd Framework logs and applies security policy to linux auditd data☆15Jan 26, 2018Updated 8 years ago
- Full packet capture with flow cutoff, rotation, and compression☆15Sep 18, 2018Updated 7 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆124Nov 19, 2020Updated 5 years ago
- Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files☆44May 9, 2024Updated last year
- Bro scripts written by CrowdStrike Services☆150May 3, 2021Updated 4 years ago
- Zeek Analysis Tools (ZAT): Processing and analysis of Zeek network data with Pandas, scikit-learn, Kafka and Spark☆451Jan 16, 2024Updated 2 years ago
- Broctl plugin for automatically executing 'setcap' on each node after an install☆13Dec 18, 2020Updated 5 years ago
- Script for generating Bro intel files from pdf or html reports☆77Dec 7, 2015Updated 10 years ago
- Low budget VirusTotal Intelligence Cosplay☆20Jan 6, 2022Updated 4 years ago
- A LLVM-based toolchain for Linux designed to build a portable osquery☆41Mar 12, 2026Updated last week
- Site for IWS book content☆17Oct 28, 2018Updated 7 years ago
- A package manager for Zeek☆47Mar 5, 2026Updated 2 weeks ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Jul 23, 2015Updated 10 years ago
- ☆11Sep 26, 2019Updated 6 years ago
- ALPHA/WIP for OSquery configuration for Mac and Linux Operating Systems☆16Jan 9, 2018Updated 8 years ago
- Provide a shell like interface by utilizing osquery's distributed API☆82Jun 24, 2020Updated 5 years ago
- No elephant flows - flow shunting for Arista switches using EOS API☆27Apr 27, 2021Updated 4 years ago
- LEGACY use https://github.com/mephux/kolide -- Envdb - Ask your environment questions with osquery.☆512May 8, 2016Updated 9 years ago
- Awesome Data Sanitization☆12Jun 6, 2021Updated 4 years ago
- Bro Live! A Bro training/learning environment.☆14Jul 21, 2015Updated 10 years ago
- This python scripts can calculate the WHOIS Similarity Distance between two given domains.☆29Dec 8, 2022Updated 3 years ago
- Cross Namespace Nginx Ingress Controller setup and a working demo☆16Jun 21, 2018Updated 7 years ago
- Summit Route End Point Protection - Server code☆11Apr 10, 2016Updated 9 years ago
- Analysis related to article on FOIA Online Database.☆11Feb 2, 2017Updated 9 years ago
- integrating bro into yara☆33Dec 9, 2014Updated 11 years ago
- ☆10Mar 7, 2019Updated 7 years ago
- Haskell parser for the REIL intermediate language (currently a work-in-progress)☆11Jan 12, 2018Updated 8 years ago
- Flow-based SSH intrusion detection system (NfSen plugin)☆41Dec 10, 2015Updated 10 years ago
- Vagrant files for a Ganeti tutorial and/or Ganeti testing environment☆28Feb 28, 2014Updated 12 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Aug 3, 2019Updated 6 years ago
- Logstash configuration files for analyzing various types of logs☆25Dec 9, 2016Updated 9 years ago
- Use AMQP broker to send or receive messages via FluentD☆15Jul 12, 2020Updated 5 years ago