#
bro
Here are 71 public repositories matching this topic...
aryanguenthner
commented
Apr 3, 2021
The current view is "15 Most Common Product/Ports"
Only seeing 15 Products limits the visibility into network recon.
Request is to add the option to "Show All Products Ports"
The ability to see all products is key to network enumeration.
: Processing and analysis of Zeek network data with Pandas, scikit-learn, Kafka and Spark
-
Updated
Oct 5, 2021 - Jupyter Notebook
An All-In-One home intrusion detection system (IDS) solution for the Raspberry PI.
raspberry-pi
iot
monitor
raspberrypi
bro
suricata
intrusion-detection
raspbian
securityonion
internetofthings
-
Updated
Jun 30, 2018 - Python
Bro IDS Dockerfile
-
Updated
Sep 14, 2019 - Zeek
The default package source of the Zeek Package Manager
-
Updated
Oct 8, 2021
Extract files from network traffic with Zeek.
-
Updated
Mar 17, 2020 - Zeek
Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
-
Updated
Apr 28, 2021 - Go
A package manager for Zeek
-
Updated
Oct 9, 2021 - Python
Zeek (formerly Bro) Network Security Monitor package for pfSense router/firewall
javascript
bash
ssh
php
xml
firewall
ajax
bro
browse
pfsense
xml-rpc
zeek
pfsense-pkg-zeek
pfsense-pkg-bro
pfsense-router
-
Updated
Jun 27, 2021 - PHP
brostash: Linux distribution based on Debian and focusing on network security events collection
-
Updated
Aug 30, 2020 - Shell
Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))
-
Updated
Apr 17, 2020
A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the necessary hardware and setup and finally provide some examples of how you can use the power of Zeek to have absolute control over your network.
pcap
hack
network
hacking
bro
cybersecurity
network-monitoring
lesson
network-security-monitoring
network-analysis
cyber
cyber-security
network-traffic
network-security
zeek
cyber-threat-intelligence
conn
cyber-security-team
zeek-instance
-
Updated
Sep 27, 2021 - Zeek
An extremely crude, lightweight Web Frontend for Suricata/Bro to be used with BriarIDS
-
Updated
Jun 15, 2018 - PHP
Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.
-
Updated
Oct 24, 2018 - Python
BRO/Zeek IDS content pack contains pipeline rules, a stream, a dashboard displaying interesting activity, and a syslog tcp input to capture and index BRO/Zeek logs coming from a remote sensor.
-
Updated
Apr 12, 2020
Go implementation of the Community ID flow hashing standard
go
golang
bro
suricata
network-monitoring
network-security-monitoring
network-security
zeek
flow-hashing
community-id
-
Updated
Mar 15, 2021 - Go
Applied Resiliency for More Trustworthy Grid Operation
-
Updated
Oct 5, 2021 - JavaScript
Improve this page
Add a description, image, and links to the bro topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the bro topic, visit your repo's landing page and select "manage topics."
Hello Zeek's community!
Zeek (master and 4.1) corrupts extracted PE executable from an HTTP response if the request has a non-expected Content-Type. Here is a proof-of-concept PCAP with two HTTP responses returning the same file but with different Content-Types. The first one with the right Content-Type "application/x-msdownload" and another one with "message/rfc822".
Zeek extracts the f