A Zeek OpenVPN protocol analyzer, based on Spicy.
A Zeek OSPF packet analyzer, based on Spicy.
A Zeek STUN protocol analyzer based on Spicy.
A Wireguard VPN protocol analyzer, based on Spicy.
This script replaces the default ssh/interesting-hostnames and reduces the number of asyncrhonous when() calls made by Zeek.
Two-dimensional buckets for sumstats (count occurences per $str).
An example Zeek package for testing purposes.
This plugin provides Testimony support for Zeek.
"This package generates a file called tls.log. The difference from ssl.log is that it is much more focused on logging all kinds of protocol features. This can be interesting for academic purposes - or if one is just interested in more information about specific features used in local TLS traffic."
A package that enables Zeek to communicate with VAST
A plugin to find Windows executables that have been XOR encoded.
Detects Zerologon (CVE-2020-1472) attempts and exploits.
Page 11 of 11, showing 14 record(s) out of 214 total