Analysis scripts for the Bro Intrusion Detection System
Bro Python Shell Standard ML
Pull request Compare This branch is 144 commits ahead, 35 commits behind sethhall:master.
Latest commit 1705257 Nov 14, 2012 @JustinAzoff fixes
Permalink
Failed to load latest commit information.
testing
COPYING
README
active-hosts-metrics.bro
country-metrics.bro update for new api Mar 30, 2012
dump_http.bro
dump_http.sh
generate_splunk_configs.py
http-ext-block-exe-hosts.bro add www1 to bad domains Apr 29, 2011
http-metrics.bro update for new api Mar 30, 2012
http-mime-metrics.bro
http-site-metrics.bro
http-size-metrics.bro
ipblocker.bro
log-external-dns.bro
log-external-names.bro
log-http-sqli.bro only log incoming Mar 1, 2012
metrics.http-ext.bro
metrics.smtp-ext.bro
notice.bro.patch
rdp.bro
rdp.sig basic rdp policy Oct 30, 2009
rogue-access-points.bro is_local_addr is under Site:: now Nov 14, 2011
simple-clear-passwords.bro
smtp-ext-count-rejects.bro
smtp-ext-phish-passwords.bro merge in change used in logging.smtp-ext.bro from seth Mar 11, 2010
ssh-ext-block.bro make scanner client versions configurable Jan 29, 2010
subnet-admins.bro
subnet-helper.bro script to block libssh scanners Jan 28, 2010
tablize
urlsnarf.sh

README

Bro-IDS analysis scripts
========================
All of these scripts require Bro 1.5 or greater.