28 results found Sort:
- Filter by Primary Language:
- Python (8)
- C++ (5)
- Zeek (5)
- Shell (4)
- Go (3)
- Jupyter Notebook (1)
- +
Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.
Created
2012-07-06
17,268 commits to master branch, last one a day ago
Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, build your taylor-made EASM tool, colle...
Created
2014-09-12
4,053 commits to master branch, last one 17 days ago
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
Created
2019-05-13
4,474 commits to main branch, last one 6 days ago
:star: :star: Distributed tcpdump for cloud native environments :star: :star:
Created
2022-03-25
61 commits to main branch, last one about a year ago
Logging Made Easy (LME) is a no cost, open source platform that centralizes log collection, enhances threat detection, and enables real-time alerting, helping small to medium-sized organizations secu...
Created
2023-10-06
109 commits to main branch, last one 5 days ago
Slips, a free software behavioral Python intrusion prevention system (IDS/IPS) that uses machine learning to detect malicious behaviors in the network traffic. Stratosphere Laboratory, AIC, FEL, CVUT ...
Created
2015-12-08
12,804 commits to master branch, last one 20 days ago
Tenzir is the data pipeline engine for security teams.
Created
2010-09-23
22,897 commits to main branch, last one 22 hours ago
Zeek Analysis Tools (ZAT): Processing and analysis of Zeek network data with Pandas, scikit-learn, Kafka and Spark
Created
2017-03-22
572 commits to main branch, last one 10 months ago
This project is a SIEM with SIRP and Threat Intel, all in one.
Created
2021-05-11
638 commits to master branch, last one a day ago
Zeek-Formatted Threat Intelligence Feeds
Created
2020-08-20
97 commits to master branch, last one 3 hours ago
🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
This repository has been archived
(exclude archived)
Created
2019-01-31
857 commits to main branch, last one 2 years ago
C++ parser generator for dissecting protocols & files.
Created
2020-04-06
3,678 commits to main branch, last one 7 days ago
Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.
Created
2024-06-27
57 commits to main branch, last one 3 months ago
DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat detection
Created
2019-06-17
1,370 commits to master branch, last one 2 years ago
Threat Hunting Toolkit is a Swiss Army knife for threat hunting, log processing, and security-focused data science
Created
2021-03-17
410 commits to main branch, last one 20 days ago
Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
Created
2018-08-24
57 commits to master branch, last one 3 years ago
Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
Created
2021-03-27
1,511 commits to main branch, last one about a month ago
A completely automated anomaly detector Zeek network flows files (conn.log).
Created
2019-08-03
85 commits to main branch, last one 3 months ago
Collection of scripts, files, and tips to create and maintain networks, hack, and more!
Created
2019-02-20
169 commits to master branch, last one 3 years ago
Open source endpoint agent providing host information to Zeek. [v2]
Created
2021-12-06
345 commits to main branch, last one 3 months ago
Zeek's Messaging Library
Created
2014-07-09
2,048 commits to master branch, last one 13 days ago
A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the necessary hardware and setup and finally provide some examples...
Created
2020-02-07
25 commits to main branch, last one 2 years ago
Run zeek with zeekctl in docker
Created
2020-05-21
69 commits to master branch, last one 3 months ago
Documentation for Zeek
Created
2019-01-17
1,117 commits to master branch, last one 11 hours ago
A Zeek log writer plugin that publishes to Kafka.
Created
2020-12-31
80 commits to main branch, last one 6 months ago
Zeek network security monitor plugin that enables parsing of the Ethernet/IP and Common Industrial Protocol standards
Created
2019-10-04
25 commits to master branch, last one 8 months ago
This repository contains Splunk queries to hunt some anomalies
Created
2022-04-08
65 commits to main branch, last one 2 years ago
A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for further processing!
Created
2021-12-28
140 commits to master branch, last one 2 years ago