Packages

bro-ja3

By hosom

Generate and log ja3 ssl fingerprints

bro-napatech

By hosom

Packet source plugin that provides native support for NTAPI

bro-oui

By hosom

Add OUI lookup to Bro.

bro-shellshock

By corelight

Discover successful ShellShock attacks.

bro-sysmon

By salesforce

Zeek-Sysmon contains a python script that will read in a file, parse JSON Windows Event Logs, generate Zeek events, and forward them to Zeek. Default Zeek-Sysmon scripts log output to files.

dummy-connections

By hosom

Create dummy connection records.

file-extraction

By hosom

Extract files from network traffic with Zeek.

log-filters

By hosom

Implement common log filters.

Page 1 of 1, showing 8 record(s) out of 8 total