bro-ids

There are 1 repository under bro-ids topic.

activecm / rita
Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.
rita network-traffic threat scanning offensive-countermeasures bro-ids blueteam security logs analytics analysis bhis beacon beacon-sniffer dns dns-tunneling dga
Language:Go 2468
blacktop / docker-bro
Bro IDS Dockerfile
bro bro-ids docker network-monitoring network-analysis ids kafka elasticsearch
Language:Zeek 130
alphasoc / nfr
A lightweight tool to score network traffic and flag anomalies
security monitoring intrusion-detection malware-analysis bro-ids suricata
Language:Go 123
tylabs / dovehawk
Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
misp bro-ids threat-hunting threat-intelligence zeek-ids zeek misp-sightings
Language:Zeek 122
binorassocies / brostash
brostash: Linux distribution based on Debian and focusing on network security events collection
bro-ids pf-ring debian linux-distribution filebeat security linux elk packetbeat bro
Language:Shell 34
clong / vagrant-ids
An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk
information-security intrusion-detection intrusion-detection-system vagrant vagrantfile suricata bro-ids splunk
Language:Shell 22
andrewbeard / broworkshop
Materials for the BSides NoVA/Charleston 2018 Bro Workshop
bro bro-ids bro-logs bsides nsm training-materials workshop zeek zeek-ids
Language:Dockerfile 14
0snap / zeek-cluster
Docker based Zeek IDS worker cluster
bro ids docker intrusion-detection-system cluster zeek-ids zeek bro-ids
Language:Dockerfile 11
al0ne / Bro-ELK
将bro日志输出到elk里面
bro-ids elastic elk
9
ahmadjd94 / Bro-ID-Log-Analyzer
BILA: BRO IDS Logs Analyzer
security bro log-analyzer ids bro-ids plotly sqlite3
Language:Python 7
adi928 / brocata
Porting Suricata to Bro signatures
suricata-rule suricata zeek bro-ids python3 broctl
Language:Python 6
binorassocies / brostash-pipeline
Brostash Logstash pipeline
bro-ids bro-logs brostash brostash-pipeline elasticsearch logstash
6
elnappo / bro-log-parser
Simple logfile parser for Bro IDS
bro bro-ids logfile-parser python3 security
Language:Python 5
mellow-hype / c2finder
Look for un-sinkholed C&C IPs in your Bro logs (from Bambanek Consulting C&C master list)
bro-ids infosec blueteam threat-hunting
Language:Python 4
binorassocies / bro-scripts
Bro IDS useful scripts
bro-ids security smtp x509
Language:Bro 3
malice-plugins / bro
Malice Bro Plugin
bro docker plugin malice malware bro-ids network-monitoring
Language:Go 3
u439 / Bro-Elk
Integration of Bro-IDS and ELK stack
bro-ids threat-intelligence intrusion-detection-system elasticsearch elk-stack
3
picatz / fluentd-zeek-conf
🐦 A fluentd config for zeek
fluentd zeek-ids bro-ids configuration-file google-cloud-platform
2
treussart / ProbeManager_Bro
Module Bro NIDS for Probe Manager
bro-ids
Language:Python 2
esnet / zeek_perfsonar_owamp
OWAMP protocol analyzer plugin for Bro/Zeek
bro zeek bro-ids zeek-ids
Language:JavaScript 1
MikelMoreno / ParseZeekLogs
Utility for parsing Bro log files into CSV or JSON format
bro-ids csv-parser parser
Language:Python 0
alexisfacques / buildroot-bro
Patches for cross-compiling Bro IDS with Buildroot.
buildroot buildroot-package bro-ids broccoli
Language:Makefile
jodevsa / BroJS
a bro client library for NodeJS
bro-ids library nodejs
Language:JavaScript
jodevsa / BroRest
restful API for Bro IDS
ids bro-ids security restful-api
Language:JavaScript
mellow-hype / dockerized-elk
ELK stack with docker-compose
elk docker bro-ids bro logs