Zeek-Formatted Threat Intelligence Feeds
-
Updated
May 31, 2024 - Zeek
Zeek-Formatted Threat Intelligence Feeds
Open source security data pipelines.
Slips, a free software behavioral Python intrusion prevention system (IDS/IPS) that uses machine learning to detect malicious behaviors in the network traffic. Stratosphere Laboratory, AIC, FEL, CVUT in Prague.
Logging Made Easy (LME) is a no-cost and open logging and protective monitoring solution serving all organizations.
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
Terraform for Corelight's AWS Cloud Enrichment.
Terraform for Corelight's GCP Cloud Enrichment.
Language server for Zeek script
Repository for configuration files, scripts, code, and other information on the Watchtower Stack
Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
Terraform for Corelight's Azure Cloud Enrichment.
Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more! Uses Nmap, Masscan, Zeek, p0f, etc.
Add a description, image, and links to the zeek topic page so that developers can more easily learn about it.
To associate your repository with the zeek topic, visit your repo's landing page and select "manage topics."