Zeek Network Monitoring Project

Repositories

• zeek

  Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

  security pcap dfir bro network-monitoring nsm zeek
  C++ 786 3,019 81 (16 issues need help) 13 Updated Feb 23, 2020

• broker

  Zeek's Messaging Library

  caf pubsub bro
  C++ 14 37 10 2 Updated Feb 23, 2020

• paraglob

  A fairly quick data structure for matching a string against a large list of patterns.
  C 3 18 2 0 Updated Feb 23, 2020

• zeek-3rdparty

  Third-party code used in Zeek.
  C 2 3 0 1 Updated Feb 22, 2020

• actor-framework

  Forked from actor-framework/actor-framework

  An Open Source Implementation of the Actor Model in C++
  C++ 399 2 0 0 Updated Feb 22, 2020

• cmake

  CMake scripts used in Zeek
  CMake 41 31 0 1 Updated Feb 22, 2020

• zeek-agent

  An endpoint monitoring agent that provides host activity to Zeek
  C++ 4 16 6 2 Updated Feb 22, 2020

• packages

  The default package source of the Zeek Package Manager

  security pcap packages plugins bro network-monitoring nsm
  63 74 0 1 Updated Feb 21, 2020

• zeek-aux

  Zeek Auxiliary Programs
  C 12 6 0 0 Updated Feb 21, 2020

• zeekctl

  Tool for managing Zeek deployments.
  Python 26 30 0 0 Updated Feb 19, 2020

• trace-summary

  Generates network traffic summaries.
  Python 5 15 0 0 Updated Feb 19, 2020

• time-machine

  Time-Machine Dynamic Bulk Packet Recorder
  C++ 12 30 1 5 Updated Feb 18, 2020

• pysubnettree

  A Python Module for CIDR Lookups
  C++ 14 26 4 0 Updated Feb 15, 2020

• zeek-testing

  Test baselines for Zeek.
  Makefile 3 2 0 0 Updated Feb 15, 2020

• libkqueue

  Forked from mheily/libkqueue

  kqueue(2) compatibility library
  C 59 0 0 0 Updated Feb 15, 2020

• btest

  A Simple Driver for Basic Unit Tests
  Python 9 6 1 0 Updated Feb 13, 2020

• zeek-agent-framework

  Script framework for Zeek to integrate with Zeek-Agent and OSQuery (in development)
  Zeek 1 3 0 0 Updated Feb 12, 2020

• capstats

  A tool to get some NIC statistics.
  C++ 1 10 0 0 Updated Feb 10, 2020

• binpac

  High level language for describing protocol parsers.
  C++ 19 43 0 0 Updated Feb 10, 2020

• bifcl

  Built-In-Function (BIF) Compiler/Generator for Zeek
  Yacc 2 2 0 0 Updated Feb 10, 2020

• zeek-docs

  Documentation for Zeek

  security pcap dfir bro network-monitoring nsm zeek
  Python 5 13 0 0 Updated Feb 8, 2020

• zeek-netcontrol

  Connectors for the Zeek NetControl framework
  Python 10 14 4 0 Updated Feb 8, 2020

• ci-email-action

  Forked from jsiwek/ci-email-action

  GitHub action to send email via SMTP on CI check_suite failure
  Python BSD-3-Clause 1 0 0 0 Updated Feb 6, 2020

• rapidjson

  Forked from Tencent/rapidjson

  A fast JSON parser/generator for C++ with both SAX/DOM style API
  C++ 2,427 0 0 0 Updated Jan 17, 2020

• zeek-docker

  Docker files for building Zeek.
  Dockerfile 17 34 3 0 Updated Jan 13, 2020

• try-zeek

  Code for try.zeek.org.
  JavaScript 4 15 2 1 Updated Dec 23, 2019

• zeek-osquery

  Bro/Zeek integration with osquery
  Zeek 24 79 2 0 Updated Dec 2, 2019

• bro-netmap

  Native Netmap Packet IOSource for Bro/Zeek
  C 4 3 2 0 Updated Nov 22, 2019

• package-manager

  A package manager for Zeek

  security package-manager plugin-manager pcap packages bro network-monitoring
  Python 15 31 5 0 Updated Oct 14, 2019

• zeek-pkg-web

  Web viewer for packages maintained by the Zeek Package Manager, e.g. https://packages.zeek.org
  PHP 4 1 0 0 Updated Oct 9, 2019