zeek / zeek-docsLinks
Documentation for Zeek
☆50Updated 2 weeks ago
Alternatives and similar repositories for zeek-docs
Users that are interested in zeek-docs are comparing it to the libraries listed below
Sorting:
- Zeek support for Community ID flow hashing.☆37Updated 2 years ago
- misp-cloud - Cloud-ready images of MISP☆74Updated 3 years ago
- A website and framework for testing NIDS detection☆57Updated 4 years ago
- ☆37Updated 4 years ago
- A collection of notebooks built for defensive and offensive operations.☆77Updated 5 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆122Updated 4 years ago
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)☆107Updated last year
- Log Entry to Sigma Rule Converter☆109Updated 3 years ago
- ☆50Updated 5 years ago
- Integrate Zeek with Alienvault OTX☆25Updated 5 years ago
- Specifications used in the MISP project including MISP core format☆52Updated this week
- ☆91Updated this week
- Salt States for Configuring the SIFT Workstation☆107Updated 2 weeks ago
- Presentation Slides and Video links☆32Updated 3 years ago
- 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.☆264Updated 2 years ago
- Scripts for TheHive.☆23Updated 5 years ago
- ☆34Updated 5 years ago
- ☆34Updated 4 years ago
- OASIS TC Open Repository: Providing a collection of CTI-related training materials☆50Updated 3 years ago
- S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator☆89Updated 2 years ago
- Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing☆105Updated last year
- ☆77Updated 6 years ago
- Best practices in threat intelligence☆48Updated 2 years ago
- Threat Alert Logic Repository☆92Updated 6 years ago
- ☆35Updated 4 years ago
- automate your MISP installs☆68Updated 5 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆110Updated 7 years ago
- Community driven repository of Playbooks and Apps for ThreatConnect.☆72Updated last month
- Zeek package for tracking long connections to report them before they have completed.☆31Updated 3 months ago
- Collection of walkthroughs on various threat hunting techniques☆75Updated 5 years ago