zeek
Here are 167 public repositories matching this topic...
Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, build your taylor-made EASM tool, collect and analyse network intelligence from your sensors, and much more! Uses Nmap, Masscan, Zeek, p0f, ProjectDiscovery tools, etc.
-
Updated
Dec 10, 2024 - Python
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
-
Updated
Nov 18, 2024 - Python
⭐ ⭐ Distributed tcpdump for cloud native environments ⭐ ⭐
-
Updated
Jul 1, 2024 - Go
Logging Made Easy (LME) is a no cost, open source platform that centralizes log collection, enhances threat detection, and enables real-time alerting, helping small to medium-sized organizations secure their infrastructure.
-
Updated
Dec 13, 2024 - Python
Slips, a free software behavioral Python intrusion prevention system (IDS/IPS) that uses machine learning to detect malicious behaviors in the network traffic. Stratosphere Laboratory, AIC, FEL, CVUT in Prague.
-
Updated
Dec 13, 2024 - Python
Tenzir is the data pipeline engine for security teams.
-
Updated
Dec 14, 2024 - C++
Zeek Analysis Tools (ZAT): Processing and analysis of Zeek network data with Pandas, scikit-learn, Kafka and Spark
-
Updated
Jan 16, 2024 - Jupyter Notebook
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
-
Updated
Nov 18, 2024 - Python
Zeek-Formatted Threat Intelligence Feeds
-
Updated
Dec 14, 2024 - Zeek
🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
-
Updated
Mar 17, 2023 - Python
Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.
-
Updated
Dec 12, 2024 - Go
DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat detection
-
Updated
May 23, 2023 - Python
Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
-
Updated
Jul 12, 2021 - Zeek
Threat Hunting Toolkit is a Swiss Army knife for threat hunting, log processing, and security-focused data science
-
Updated
Dec 1, 2024 - Shell
Zeek IDS Dockerfile
-
Updated
Dec 5, 2022 - Zeek
Extract files from network traffic with Zeek.
-
Updated
Mar 17, 2020 - Zeek
Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
-
Updated
Oct 15, 2024 - Go
Improve this page
Add a description, image, and links to the zeek topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the zeek topic, visit your repo's landing page and select "manage topics."