zeek / zeek-docs
Documentation for Zeek
☆49Updated last week
Related projects: ⓘ
- Zeek support for Community ID flow hashing.☆32Updated last year
- Zeek package for tracking long connections to report them before they have completed.☆28Updated 2 years ago
- A Spicy protocol analyzer for WireGuard☆27Updated 4 years ago
- Tool for managing Zeek deployments.☆53Updated last month
- Plugin for Zeek/Bro which provides http2 decoder/analyzer☆30Updated 3 months ago
- Integrate Zeek with Alienvault OTX☆24Updated 4 years ago
- Best practices in threat intelligence☆46Updated last year
- ☆47Updated last week
- A collection of notebooks built for defensive and offensive operations.☆76Updated 3 years ago
- ☆34Updated 3 years ago
- Log Entry to Sigma Rule Converter☆105Updated 2 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆32Updated 2 years ago
- OSSEM Common Data Model☆54Updated 2 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆51Updated 2 years ago
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆106Updated 4 years ago
- Specifications used in the MISP project including MISP core format☆45Updated 2 months ago
- Bro/Zeek integration with osquery☆95Updated 3 years ago
- A website and framework for testing NIDS detection☆56Updated 3 years ago
- Bro script package to create JSON formatted logs to stream into data analysis systems.☆27Updated 9 months ago
- Suricata rule and intel index☆28Updated last month
- Log4j Exploit Detection Logic for Zeek☆18Updated 4 months ago
- misp-cloud - Cloud-ready images of MISP☆70Updated 2 years ago
- Salt States for Configuring the SIFT Workstation☆93Updated this week
- Expert Investigation Guides☆50Updated 3 years ago
- Collection of walkthroughs on various threat hunting techniques☆73Updated 4 years ago
- Zeek Training Materials/Products☆34Updated 10 months ago
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆33Updated 3 weeks ago
- automate your MISP installs☆66Updated 4 years ago
- Repository of yara rules☆57Updated last year
- Bro scripts for the ROCK platform. http://rocknsm.io☆33Updated last year