zeek / zeek-docs
Documentation for Zeek
☆50Updated this week
Alternatives and similar repositories for zeek-docs:
Users that are interested in zeek-docs are comparing it to the libraries listed below
- Zeek support for Community ID flow hashing.☆35Updated last year
- The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.☆135Updated last week
- Specifications used in the MISP project including MISP core format☆51Updated 3 months ago
- Bro script package to create JSON formatted logs to stream into data analysis systems.☆28Updated last year
- Salt States for Configuring the SIFT Workstation☆100Updated 2 weeks ago
- Zeek package for tracking long connections to report them before they have completed.☆30Updated 2 months ago
- A website and framework for testing NIDS detection☆57Updated 3 years ago
- Integrate Zeek with Alienvault OTX☆25Updated 4 years ago
- misp-cloud - Cloud-ready images of MISP☆72Updated 2 years ago
- Best practices in threat intelligence☆46Updated 2 years ago
- Actionable analytics designed to combat threats based on MITRE's ATT&CK.☆22Updated 5 years ago
- Tool for managing Zeek deployments.☆54Updated this week
- A collection of notebooks built for defensive and offensive operations.☆77Updated 4 years ago
- Log4j Exploit Detection Logic for Zeek☆19Updated 11 months ago
- Exports MISP events to STIX and ingest into McAfee ESM☆15Updated 5 years ago
- ☆34Updated 4 years ago
- ☆23Updated 5 years ago
- OSSEM Common Data Model☆55Updated 2 years ago
- Build Automated Machine Images for MISP☆28Updated last year
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆108Updated 5 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆123Updated 3 years ago
- OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON☆50Updated last year
- ☆55Updated 3 years ago
- Threat Alert Logic Repository☆92Updated 6 years ago
- A community event for security researchers to share their favorite notebooks☆107Updated last year
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- automate your MISP installs☆67Updated 4 years ago
- Collection of walkthroughs on various threat hunting techniques☆75Updated 4 years ago
- Definition, description and relationship types of MISP objects☆96Updated last week
- Log Entry to Sigma Rule Converter☆107Updated 3 years ago