Packages

bro-mongodb

By activecm

Bro IDS/ MongoDB connector.

bro-myricom

By sethhall

Packet source plugin that provides native Myricom SNF v3+v4 support.

bro-napatech

By hosom

Packet source plugin that provides native support for NTAPI

bro-netmap

By bro

Packet source plugin that provides native Netmap support.

bro-notice-slack

By pgaulon

Bro Notices through Slack webhook

bro-oui

By hosom

Add OUI lookup to Bro.

bro-pf_ring

By ntop

Packet source plugin that provides native PF_RING support.

bro-quic

By dopheide

Attempt to identify QUIC protocol

bro-quic

By corelight

Detects the Google QUIC (GQUIC) protocol and adds "gquic" to conn.log's "service" field.

bro-rita

By activecm

RITA, Bro IDS connector.

bro-shellshock

By corelight

Discover successful ShellShock attacks.

bro-simple-scan

By ncsa

Simple, high performance tcp scan detection

bro-test-package

By jsiwek

An example Zeek package for testing purposes.

bro-vast

By tenzir

A package that enables Bro to communicate with VAST

bro-xdp_packet-plugin

By irtimmer

This plugin provides native AF_XDP support for Bro.

bro-xor-exe-plugin

By corelight

A plugin to find Windows executables that have been XOR encoded.

bro-zeromq-writer

By ncsa

ZeroMQ log writer.

conn-burst

By corelight

Identify bursty connections (large and fast)

credit-card-exposure

By sethhall

Detect credit card numbers in HTTP and SMTP with Bro.

CVE-2017-5638_struts

By initconf

package to detect CVE-2017-5638 struts attack

Page 2 of 4, showing 20 record(s) out of 79 total