Packages
By sethhall
Detect credit card numbers in HTTP and SMTP with Bro.
By initconf
package to detect CVE-2017-5638 struts attack
By 0xxon
"Test script for CVE-2020-0601. Please read Readme."
By 0xxon
"Test script for CVE-2020-0601. Binary package, requires OpenSSL 1.1.x"
By 0xxon
"Test script for CVE-2020-13777. Please read Readme."
By corelight
A network detection package for CVE-2020-16898 (Windows TCP/IP Remote Code Execution Vulnerability) AKA BadNeighbor
By initconf
CVE-2020-16898: Bad Neighbor
By corelight
A network detection package for CVE-2020-5902, a CVE10.0 vulnerability affecting F5 Networks, Inc BIG-IP devices.
By corelight
A Zeek package which detects CVE-2021-38647 (AKA OMIGOD) exploit attempts
By corelight
Watch SMB transactions for files whose filename matches patterns known to be used by ransomware
By srozb
Find and notice DNS zone transfer attempts.
By hhzzk
Detect DNS Tunnels attack.
By sethhall
A library for getting the "effective tld" of a domain name.
By dovehawk
MISP+Zeek. Dovehawk is a Zeek Module to import MISP indicators to the Intel Framework and Signature Framework automatically. Reports sightings directly back to MISP as they happen. Supports Zeek Clusters.
By dovehawk
Dovehawk.io Passive DNS Capture Module.
By dovehawk
Dovehawk Anonymized Outbound Flow Tracking
By hosom
Create dummy connection records.
By emojifier
Set your logs on fire with Emojifier!
Page 3 of 9, showing 20 record(s) out of 180 total