Packages
By corelight
A Zeek OpenVPN protocol analyzer, based on Spicy.
By corelight
A Zeek OSPF packet analyzer, based on Spicy.
By corelight
A Zeek STUN protocol analyzer based on Spicy.
By corelight
A Wireguard VPN protocol analyzer, based on Spicy.
By dopheide
This script replaces the default ssh/interesting-hostnames and reduces the number of asyncrhonous when() calls made by Zeek.
By 0xxon
Two-dimensional buckets for sumstats (count occurences per $str).
By jsiwek
An example Zeek package for testing purposes.
By sirinsoftware
This plugin provides Testimony support for Zeek.
By 0xxon
"This package generates a file called tls.log. The difference from ssl.log is that it is much more focused on logging all kinds of protocol features. This can be interesting for academic purposes - or if one is just interested in more information about specific features used in local TLS traffic."
By tenzir
A package that enables Zeek to communicate with VAST
By corelight
A plugin to find Windows executables that have been XOR encoded.
By corelight
Experimental JavaScript support for Zeek.
By corelight
Detects Zerologon (CVE-2020-1472) attempts and exploits.
Page 11 of 11, showing 14 record(s) out of 214 total