zeek / zeek-docsLinks
Documentation for Zeek
☆50Updated this week
Alternatives and similar repositories for zeek-docs
Users that are interested in zeek-docs are comparing it to the libraries listed below
Sorting:
- The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.☆140Updated last week
- A website and framework for testing NIDS detection☆57Updated 3 years ago
- Tool for managing Zeek deployments.☆56Updated last week
- Zeek support for Community ID flow hashing.☆36Updated 2 years ago
- ☆89Updated this week
- ☆48Updated last week
- ☆36Updated 4 years ago
- Salt States for Configuring the SIFT Workstation☆104Updated 3 weeks ago
- Zeek package for tracking long connections to report them before they have completed.☆30Updated last month
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)☆106Updated last year
- misp-cloud - Cloud-ready images of MISP☆73Updated 2 years ago
- OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON☆50Updated last year
- Specifications used in the MISP project including MISP core format☆51Updated last month
- 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.☆263Updated 2 years ago
- Log Entry to Sigma Rule Converter☆108Updated 3 years ago
- Bro script package to create JSON formatted logs to stream into data analysis systems.☆28Updated last year
- Alienvault OTX TAXII connector☆56Updated 8 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆121Updated 4 years ago
- Wireshark plugin to display Suricata analysis info☆95Updated 3 years ago
- ☆77Updated 6 years ago
- Tools to assist in forensicating docker☆84Updated 5 months ago
- ☆33Updated 5 years ago
- Python API Client for Cortex☆32Updated 3 years ago
- OASIS TC Open Repository: Providing a collection of CTI-related training materials☆50Updated 3 years ago
- Docker files for building Zeek.☆87Updated last year
- Actionable analytics designed to combat threats based on MITRE's ATT&CK.☆23Updated 5 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆35Updated 2 years ago
- Integrate Zeek with Alienvault OTX☆25Updated 4 years ago
- Definition, description and relationship types of MISP objects☆99Updated last week
- The PCAP Analyzer for Splunk includes useful Dashboards to analyze network packet capture files from Wireshark or Network Monitor (.pcap)…☆43Updated last year