zeek / zeek-agentView external linksLinks
This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2
☆124Nov 19, 2020Updated 5 years ago
Alternatives and similar repositories for zeek-agent
Users that are interested in zeek-agent are comparing it to the libraries listed below
Sorting:
- This project is no longer maintained. There's a successor at https://github.com/zeek-packages/zeek-agent-v2☆14Oct 12, 2020Updated 5 years ago
- Bro/Zeek integration with osquery☆94Nov 2, 2020Updated 5 years ago
- Bro Intel Feed Linter☆26Aug 30, 2019Updated 6 years ago
- Zeek support for Community ID flow hashing.☆37Jul 11, 2023Updated 2 years ago
- Open source endpoint agent providing host information to Zeek. [v2]☆90Jan 26, 2026Updated 2 weeks ago
- Zeek package for detecting the Eternal* exploits and a set of SMBv1 protocol violations.☆19Aug 21, 2025Updated 5 months ago
- The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.☆144Jan 29, 2026Updated 2 weeks ago
- How to Zeek Sysmon Logs!☆103Feb 12, 2022Updated 4 years ago
- This module detects HTTP requests that are non RFC compliant and used for smuggling☆12Mar 16, 2023Updated 2 years ago
- Bro analyzer that detects Google's QUIC protocol☆10Mar 2, 2021Updated 4 years ago
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆40Jun 20, 2023Updated 2 years ago
- Zeek package to generate a SMB client fingerprint☆27May 5, 2020Updated 5 years ago
- line based tcp load balancing proxy.☆14Jun 18, 2024Updated last year
- A Spicy protocol analyzer for WireGuard☆29Aug 11, 2020Updated 5 years ago
- module for osquery to load Bro logs into tables☆28Apr 28, 2015Updated 10 years ago
- Zeek plugin to generate data on per-packet sizes and intervals☆14Apr 21, 2020Updated 5 years ago
- Time-Machine Dynamic Bulk Packet Recorder☆36Apr 21, 2025Updated 9 months ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆122Jul 12, 2021Updated 4 years ago
- A set of Zeek scripts to detect ATT&CK techniques.☆620Jun 26, 2024Updated last year
- Dockerized Zeek☆12Mar 9, 2024Updated last year
- ☆14Jan 14, 2026Updated last month
- Sniffpass will alert on cleartext passwords discovered in HTTP POST requests☆17Oct 30, 2023Updated 2 years ago
- Zeek package to detect Zerologon☆11Nov 10, 2021Updated 4 years ago
- Extensions for Zeek's Intelligence Framework.☆11Mar 1, 2022Updated 3 years ago
- Enables Zeek to communicate with Tenzir☆11Jul 20, 2023Updated 2 years ago
- Log4j Exploit Detection Logic for Zeek☆19Nov 25, 2025Updated 2 months ago
- Bro scripts written by CrowdStrike Services☆148May 3, 2021Updated 4 years ago
- A Zeek plugin to POST logs over HTTP.☆13Feb 10, 2020Updated 6 years ago
- PacketSled's Bro AMQP Writer Plugin☆11Aug 5, 2016Updated 9 years ago
- ☆21Oct 16, 2021Updated 4 years ago
- Dockerfiles for NSM tools☆84Apr 14, 2017Updated 8 years ago
- A Python implementation of the Community ID flow hashing standard☆24Nov 29, 2023Updated 2 years ago
- Mapping the MITRE ATT&CK Matrix with Osquery☆804May 11, 2023Updated 2 years ago
- Zeek network security monitor plugin that enables parsing of the Ethernet/IP and Common Industrial Protocol standards☆46May 30, 2024Updated last year
- Full packet capture with flow cutoff, rotation, and compression☆15Sep 18, 2018Updated 7 years ago
- GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor☆80Sep 13, 2023Updated 2 years ago
- Template for building a packet sniffer☆15Mar 25, 2024Updated last year
- Zeek Analysis Tools (ZAT): Processing and analysis of Zeek network data with Pandas, scikit-learn, Kafka and Spark☆451Jan 16, 2024Updated 2 years ago
- Plugin providing native AF_Packet support for Zeek.☆33Oct 22, 2025Updated 3 months ago