Packages

zeek-plugin-ikev2

By ukncsc

Plugin that enables parsing of the IKEv2 protocol

zeek-plugin-profinet

By amzn

Plugin that enables parsing of the Profinet protocol

zeek-plugin-roca

By 0xxon

Identify certificates potentially affected by CVE-2017-15361

zeek-plugin-s7comm

By amzn

Plugin that enables parsing of the S7 protocol

zeek-plugin-tds

By amzn

Plugin that enables parsing of the Tabular Data Stream (TDS) protocol

zeek-postgresql

By 0xxon

A PostgreSQL reader and writer for Zeek.

zeek-print-log-info

By jsiwek

Gathers and prints field descriptions for all Zeek logs. The default output format is CSV files.

zeek-quasarrat-detector

By corelight

An QuasarRAT malware detector.

zeek-quic

By corelight

Detects the Google QUIC (GQUIC) protocol and adds "gquic" to conn.log's "service" field.

zeek-sniffpass

By cybera

Sniffpass will alert on cleartext passwords discovered in HTTP POST requests

zeek-spicy-facefish

By corelight

A Facefish rootkit detector, based on Spicy.

zeek-spicy-ipsec

By corelight

An IPSec Zeek protocol analyzer based on Spicy.

zeek-spicy-openvpn

By corelight

A Zeek OpenVPN protocol analyzer, based on Spicy.

zeek-spicy-ospf

By corelight

A Zeek OSPF packet analyzer, based on Spicy.

zeek-spicy-stun

By corelight

A Zeek STUN protocol analyzer based on Spicy.

zeek-spicy-wireguard

By corelight

A Wireguard VPN protocol analyzer, based on Spicy.

zeek-ssh-interesting-hostnames-with-known

By dopheide

This script replaces the default ssh/interesting-hostnames and reduces the number of asyncrhonous when() calls made by Zeek.

zeek-strrat-detector

By corelight

A Zeek based STRRAT malware detector.

zeek-sumstats-counttable

By 0xxon

Two-dimensional buckets for sumstats (count occurences per $str).

zeek-tenzir

By tenzir

This package is the official Zeek integration for Tenzir.

Page 13 of 14, showing 20 record(s) out of 269 total