See what the GitHub community is most excited about today.
Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.
Bro IDS programs collection.
Bro scripts written by CrowdStrike Services
Bro IDS Dockerfile
Bro scripts to be shared with the community
Various Bro scripts
Extract files from network traffic with Bro.
Bro/Zeek integration with osquery
Analysis scripts for the Bro Intrusion Detection System
Misc. Bro scripts
BotFlex is an open source tool or bot detection and analysis
Collection of Bro Scripts curated from the community and original submissions from Phirelight
Bro scripts developed by the Evernote security team.
Dovehawk is a Bro module that automatically imports MISP indicators and reports Sightings
Network Forensics Bro scripts & pcap samples
How to Zeek Sysmon Logs!
This is a script module for Bro that encapsulates and detects activity related to the Mandiant APT1 report.
Bro IDS + ELK Stack to detect and block data exfiltration
A collection of Bro scripts I've written
Bro is a powerful network analysis framework that is much different from the typical IDS you may know.