Packages

zeek-spicy-openvpn

By corelight

A Zeek OpenVPN protocol analyzer, based on Spicy.

zeek-spicy-ospf

By corelight

A Zeek OSPF packet analyzer, based on Spicy.

zeek-spicy-stun

By corelight

A Zeek STUN protocol analyzer based on Spicy.

zeek-spicy-wireguard

By corelight

A Wireguard VPN protocol analyzer, based on Spicy.

zeek-ssh-interesting-hostnames-with-known

By dopheide

This script replaces the default ssh/interesting-hostnames and reduces the number of asyncrhonous when() calls made by Zeek.

zeek-sumstats-counttable

By 0xxon

Two-dimensional buckets for sumstats (count occurences per $str).

zeek-test-package

By jsiwek

An example Zeek package for testing purposes.

zeek-testimony-plugin

By sirinsoftware

This plugin provides Testimony support for Zeek.

zeek-tls-log-alternative

By 0xxon

"This package generates a file called tls.log. The difference from ssl.log is that it is much more focused on logging all kinds of protocol features. This can be interesting for academic purposes - or if one is just interested in more information about specific features used in local TLS traffic."

zeek-vast

By tenzir

A package that enables Zeek to communicate with VAST

zeek-xor-exe-plugin

By corelight

A plugin to find Windows executables that have been XOR encoded.

zeekjs

By corelight

Experimental JavaScript support for Zeek.

zerologon

By corelight

Detects Zerologon (CVE-2020-1472) attempts and exploits.

ztest

By corelight

A Zeek Unit Testing Framework

Page 11 of 11, showing 14 record(s) out of 214 total