trisulnsm/trisul-scripts external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

trisulnsm/trisul-scripts

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/trisulnsm/trisul-scripts)

Close

trisulnsm / trisul-scriptsView on GitHubMore

• External links
• Readme badge

Ready to run scripts for network analysis

☆91Mar 20, 2025Updated 11 months ago

Alternatives and similar repositories for trisul-scripts

Users that are interested in trisul-scripts are comparing it to the libraries listed below

• initconf / scan-NG

  View on GitHub
  scan-detection policies for bro
  ☆16Jan 16, 2025Updated last year
• trisulnsm / bitmaul

  View on GitHub
  A Lua helper library for creating network protocol dissectors
  ☆13Nov 26, 2020Updated 5 years ago
• micrictor / smbfp

  View on GitHub
  Zeek package to generate a SMB client fingerprint
  ☆27May 5, 2020Updated 5 years ago
• ncsa / bro-doctor

  View on GitHub
  ☆24Mar 29, 2020Updated 5 years ago
• JustinAzoff / flow-indexer

  View on GitHub
  Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
  ☆44May 9, 2024Updated last year
• salesforce / bro-sysmon

  View on GitHub
  How to Zeek Sysmon Logs!
  ☆103Feb 12, 2022Updated 4 years ago
• fox-it / bro-scripts

  View on GitHub
  Bro-IDS scripts
  ☆50Sep 12, 2016Updated 9 years ago
• theparanoids / rdfp

  View on GitHub
  Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt
  ☆40Jun 20, 2023Updated 2 years ago
• michalpurzynski / bro-gramming

  View on GitHub
  Bro IDS programs collection.
  ☆146Oct 16, 2019Updated 6 years ago
• LeeBrotherston / tls-fingerprinting

  View on GitHub
  TLS Fingerprinting
  ☆397Oct 20, 2020Updated 5 years ago
• salesforce / ja3

  View on GitHub
  JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.
  ☆3,072May 1, 2025Updated 10 months ago
• trisulnsm / apps

  View on GitHub
  Plugin packages that provide custom visualizations and analytics capabilities to Trisul Network Analytics.
  ☆17Jan 27, 2026Updated last month
• fireeye / brocapi

  View on GitHub
  Bro PCAP Processing and Tagging API
  ☆28Nov 9, 2017Updated 8 years ago
• initconf / brocon-15

  View on GitHub
  brocon-15 scripts
  ☆13Apr 3, 2017Updated 8 years ago
• rocknsm / docket

  View on GitHub
  A RESTful API frontend for Stenographer
  ☆54Dec 7, 2022Updated 3 years ago
• zeek / packages

  View on GitHub
  The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.
  ☆143Updated this week
• D4-project / sensor-d4-tls-fingerprinting

  View on GitHub
  Extract TLS certificates from pcap files or network interfaces, fingerprint TLS client/server interactions with ja3/ja3s
  ☆37Jan 8, 2020Updated 6 years ago
• salesforce / GQUIC_Protocol_Analyzer

  View on GitHub
  GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor
  ☆80Sep 13, 2023Updated 2 years ago
• sethhall / zeek-junk-drawer

  View on GitHub
  Zeek Junk Drawer - Just some scripts and a place to put them
  ☆27Sep 22, 2020Updated 5 years ago
• Mipu94 / BroIDS_Unicorn

  View on GitHub
  simple plugin to detect shellcode on Bro IDS with Unicorn
  ☆33Jan 20, 2017Updated 9 years ago
• CrowdStrike / cs-bro

  View on GitHub
  Bro scripts written by CrowdStrike Services
  ☆150May 3, 2021Updated 4 years ago
• Cymmetria / honeycomb_plugins

  View on GitHub
  The plugin repository for Honeycomb, the honeypot framework by Cymmetria
  ☆27Oct 19, 2023Updated 2 years ago
• zeek / package-manager

  View on GitHub
  A package manager for Zeek
  ☆47Jan 8, 2026Updated last month
• CapacitorSet / ja3-server

  View on GitHub
  A proof of concept of JA3 tracking.
  ☆29Dec 31, 2018Updated 7 years ago
• SuperCowPowers / zat

  View on GitHub
  Zeek Analysis Tools (ZAT): Processing and analysis of Zeek network data with Pandas, scikit-learn, Kafka and Spark
  ☆449Jan 16, 2024Updated 2 years ago
• majek / p0f

  View on GitHub
  p0f git repo - unofficial clone
  ☆15Nov 1, 2012Updated 13 years ago
• hardlyadequate / analyst-playbook

  View on GitHub
  ☆11Mar 21, 2020Updated 5 years ago
• CERT-EDF / generaptor

  View on GitHub
  CLI generator for Velociraptor offline collector
  ☆16Oct 10, 2025Updated 4 months ago
• opencybersecurityalliance / kestrel-jupyter

  View on GitHub
  Kestrel Jupyter Notebook Kernel
  ☆10Oct 19, 2023Updated 2 years ago
• JustinAzoff / can-i-use-afpacket-fanout

  View on GitHub
  Validate if afpacket PACKET_FANOUT_HASH is working properly
  ☆25May 19, 2022Updated 3 years ago
• spitfire55 / MegaDev

  View on GitHub
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Oct 31, 2018Updated 7 years ago
• J-Gras / intel-extensions

  View on GitHub
  Extensions for Zeek's Intelligence Framework.
  ☆11Mar 1, 2022Updated 4 years ago
• corelight / zeek-quic

  View on GitHub
  Bro analyzer that detects Google's QUIC protocol
  ☆10Mar 2, 2021Updated 5 years ago
• mixmodeai / bro_intel_linter

  View on GitHub
  Bro Intel Feed Linter
  ☆26Aug 30, 2019Updated 6 years ago
• rocknsm / rock

  View on GitHub
  Automated deployment scripts for the RockNSM network hunting distribution.
  ☆456Jul 2, 2023Updated 2 years ago
• siltecon / bronion

  View on GitHub
  Import Bro logs from SecurityOnion into Logstash
  ☆15Nov 10, 2015Updated 10 years ago
• hyc / RandomxAudits

  View on GitHub
  Audit Proposals and Reports for RandomX
  ☆12Aug 3, 2019Updated 6 years ago
• rapid7 / presales-engineering

  View on GitHub
  ☆14Feb 25, 2025Updated last year
• opensourcesec / malstrom

  View on GitHub
  Cyber Intel Management
  ☆51Jan 25, 2018Updated 8 years ago