Packages
By mitrecnd
A HTTP2 protocol analyzer for the Zeek NSM.
By mitre-attack
BZAR - Bro/Zeek ATT&CK-based Analytics and Reporting.
By corelight
A package to detect CVE-2021-42292, a Microsoft Excel priviledge exploit.
By corelight
A Zeek package which raises notices for RCE in Log4J (CVE-2021-44228).
By corelight
A package to detect CVE-2022-21907
By mitre
Internet Content Adaptation Protocol (ICAP) Analyzer for Bro and Zeek.
By sithari
Detects exfiltration of data over ICMP and writes to notice.log with the details of the exfil like duration, exfil size, source/dest ip, etc.
Page 1 of 1, showing 9 record(s) out of 9 total