zeek / zeek-docsLinks
Documentation for Zeek
☆50Updated last week
Alternatives and similar repositories for zeek-docs
Users that are interested in zeek-docs are comparing it to the libraries listed below
Sorting:
- Zeek support for Community ID flow hashing.☆37Updated 2 years ago
- ☆51Updated last week
- Definition, description and relationship types of MISP objects☆100Updated 2 weeks ago
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)☆106Updated last year
- Best practices in threat intelligence☆48Updated 2 years ago
- ☆36Updated 4 years ago
- Integrate Zeek with Alienvault OTX☆25Updated 5 years ago
- Zeek package for tracking long connections to report them before they have completed.☆31Updated 3 months ago
- A collection of notebooks built for defensive and offensive operations.☆77Updated 4 years ago
- A website and framework for testing NIDS detection☆57Updated 4 years ago
- Specifications used in the MISP project including MISP core format☆52Updated 3 months ago
- 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.☆264Updated 2 years ago
- misp-cloud - Cloud-ready images of MISP☆74Updated 3 years ago
- ☆90Updated 2 weeks ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆37Updated 3 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆122Updated 4 years ago
- The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.☆141Updated last week
- Python API Client for Cortex☆32Updated 3 years ago
- Threat Alert Logic Repository☆92Updated 6 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Updated 3 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆110Updated 7 years ago
- Repository of all the sites related to infosec IP/Domain/Hash/SSL/etc OSINT and eventually will include more.☆68Updated last year
- Log Entry to Sigma Rule Converter☆109Updated 3 years ago
- Tools to assist in forensicating docker☆84Updated 7 months ago
- A community event for security researchers to share their favorite notebooks☆108Updated last year
- Wireshark plugin to display Suricata analysis info☆95Updated 3 years ago
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆54Updated this week
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Updated 4 years ago
- OASIS Cyber Threat Intelligence (CTI) TC Open Repository: Convert STIX 1.2 XML to STIX 2.x JSON☆52Updated last year
- automate your MISP installs☆68Updated 5 years ago