Zeek-Formatted Threat Intelligence Feeds
-
Updated
Nov 2, 2024 - Zeek
#
zeek
Here are 167 public repositories matching this topic...
Repository for configuration files, scripts, code, and other information on the Watchtower Stack
html
elasticsearch
grafana
prometheus
suricata
ids
json-configuration
lucene
bash-script
qemu-kvm
yaml-configuration
zeek
opensearch
security-onion
wazuh
promql
endpoint-monitoring
-
Updated
Nov 1, 2024 - HTML
Tenzir is the data pipeline engine for security teams.
security
netflow
pcap
incident-response
pipelines
dataops
suricata
siem
sigma
soc
hacktoberfest
zeek
investigation
threathunting
secdataops
-
Updated
Nov 1, 2024 - C++
Threat Hunting Toolkit is a Swiss Army knife for threat hunting, log processing, and security-focused data science
-
Updated
Nov 1, 2024 - Shell
Slips, a free software behavioral Python intrusion prevention system (IDS/IPS) that uses machine learning to detect malicious behaviors in the network traffic. Stratosphere Laboratory, AIC, FEL, CVUT in Prague.
docker
machine-learning
pcap
ai
ids
ips
network-analysis
network-security
zeek
intrusion-detection-system
endpoint-protection
intrusion-prevention-system
stratosphere-ips
gsoc-2023
gsoc-2024
-
Updated
Nov 1, 2024 - Python
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
security
pcap
cybersecurity
suricata
infosec
network-security
zeek
opensearch
network-traffic-analysis
networksecurity
arkime
opensearch-dashboards
networktrafficanalysis
-
Updated
Oct 31, 2024 - Python
Logging Made Easy (LME) is a no-cost and open logging and protective monitoring solution serving all organizations.
security
elasticsearch
log
logging
elk
cybersecurity
elastic
network-analysis
zeek
elk-stack
security-tools
-
Updated
Nov 1, 2024 - Python
Language server for Zeek script
-
Updated
Oct 28, 2024 - Rust
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
security
pcap
cybersecurity
suricata
infosec
network-security
zeek
opensearch
network-traffic-analysis
networksecurity
arkime
opensearch-dashboards
networktrafficanalysis
-
Updated
Oct 26, 2024 - Python
Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, build your taylor-made EASM tool, collect and analyse network intelligence from your sensors, and much more! Uses Nmap, Masscan, Zeek, p0f, ProjectDiscovery tools, etc.
security
osint
network
bro
nmap
scan-ports
scans
network-discovery
hacktoberfest
network-security
zeek
masscan
nmap-parser
nmap-scripts
nmap-results-analyse
easm
network-recon
projectdiscovery
network-reconnaissance
external-attack-surface-management
-
Updated
Oct 25, 2024 - Python
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
security
pcap
cybersecurity
suricata
infosec
network-security
zeek
opensearch
network-traffic-analysis
networksecurity
arkime
opensearch-dashboards
networktrafficanalysis
-
Updated
Oct 26, 2024 - Python
ZeekJS - Experimental JavaScript support for Zeek.
-
Updated
Oct 23, 2024 - C++
Improve this page
Add a description, image, and links to the zeek topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the zeek topic, visit your repo's landing page and select "manage topics."