Plugin that enables parsing of the BACnet standard building controls protocol
Plugin that enables parsing of the Ethernet/IP and Common Industrial Protocol standards
Sniffpass will alert on cleartext passwords discovered in HTTP POST requests
This script replaces the default ssh/interesting-hostnames and reduces the number of asyncrhonous when() calls made by Zeek.
"This package generates a file called tls.log. The difference from ssl.log is that it is much more focused on logging all kinds of protocol features. This can be interesting for academic purposes - or if one is just interested in more information about specific features used in local TLS traffic."