zeek-scripts
☆44Dec 27, 2018Updated 7 years ago
Alternatives and similar repositories for zeek-scripts
Users that are interested in zeek-scripts are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A set of zeek scripts providing a module for tracking and correlating abnormal DNS behavior.☆35Jan 4, 2025Updated last year
- Extract files from network traffic with Zeek.☆102Mar 17, 2020Updated 6 years ago
- A Zeek log writer plugin that publishes to Kafka.☆54Aug 18, 2025Updated 7 months ago
- Top DNS Measurement for Bro☆10Aug 22, 2020Updated 5 years ago
- 威胁检测规则集☆15Jul 5, 2019Updated 6 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆40Jun 20, 2023Updated 2 years ago
- QRadar AQL backend for converting Sigma rules to QRadar AQL queries☆14Sep 18, 2025Updated 6 months ago
- Treck Network Stack Discovery Tool [Ripple20]☆12Jul 1, 2020Updated 5 years ago
- A Zeek package that detects Zoom logins and meeting joins☆12Apr 15, 2020Updated 6 years ago
- Extracting and analyzing URLs from Emails for phishing events☆22Mar 28, 2026Updated 2 weeks ago
- Plugin providing native AF_Packet support for Zeek.☆33Oct 22, 2025Updated 5 months ago
- Ripple20 Critical Vulnerabilities - Detection Logic and Signatures☆12May 28, 2021Updated 4 years ago
- A set of Zeek scripts to detect ATT&CK techniques.☆622Jun 26, 2024Updated last year
- Corelight-Ansible-Roles are a collection of Ansible Roles and playbooks that install, configure, run and manage a variety of Corelight, S…☆16Jun 15, 2021Updated 4 years ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆18Dec 20, 2024Updated last year
- Bro IDS programs collection.☆146Oct 16, 2019Updated 6 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Oct 31, 2018Updated 7 years ago
- Configurations to implement Wazuh☆12Nov 28, 2022Updated 3 years ago
- ☆38Nov 2, 2024Updated last year
- Plugin for Zeek/Bro which provides http2 decoder/analyzer☆30Jun 11, 2024Updated last year
- Audit Powershell and search from known keywords in history #Blueteam☆25Apr 22, 2020Updated 5 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆122Jul 12, 2021Updated 4 years ago
- ☆24Jan 19, 2020Updated 6 years ago
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- setup zeek, previously Bro IDS☆18Apr 5, 2026Updated last week
- 用于辅助安全工程师漏洞挖掘、测试、复现,集合了mock、httplog、dns tools、xss,可用于测试各类无回显、无法直观判断或特定场景下的漏洞。☆11Apr 2, 2021Updated 5 years ago
- Zeek-Formatted Threat Intelligence Feeds☆394Updated this week
- To determine piano chords based on given scale☆11Aug 13, 2019Updated 6 years ago
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…☆62Dec 16, 2023Updated 2 years ago
- ☆10Apr 2, 2016Updated 10 years ago
- some config files☆14Feb 23, 2026Updated last month
- incident response scripts☆18Mar 4, 2019Updated 7 years ago
- Bro integration with osquery☆15Mar 24, 2023Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆53Aug 22, 2021Updated 4 years ago
- A Python implementation of the Community ID flow hashing standard☆24Nov 29, 2023Updated 2 years ago
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆33Apr 8, 2026Updated last week
- ☆29Nov 15, 2022Updated 3 years ago
- your censor is my censor: weaponizing residual censorship to perform availability attacks☆22Aug 10, 2021Updated 4 years ago
- CLI tool for testing Office documents with macros using MaliciousMacroBot☆12Dec 3, 2023Updated 2 years ago
- Use current thread token to execute command☆15Jan 27, 2021Updated 5 years ago