Packages
By micrictor
A package to create a fingerprint of SMB clients
By initconf
Suite of smtp related policies includes extracting and logging URLs from emails and various smtp anomaly detection heuristics to help flag phishing emails
By zeek
Spicy-based analyzer for the DHCP protocol.
By zeek
Spicy-based analyzer for the DNS protocol.
By zeek
Spicy-based analyzer for the HTTP protocol.
By zeek
An LDAP analyzer based on Spicy
By zeek
Spicy-based analyzer for the Portable Executable (PE) image format
By zeek
Spicy-based analyzer for the PNG file format.
By zeek
Spicy-based analyzer for the TFTP protocol.
By zeek
Spicy-based analyzer for the ZIP file format.
By micrictor
A package that creates a log for sequences of packet lengths and times,
allowing for new analytics based on these data features.
By anthonykasza
A proof-of-concept demonstrating scriptland parsing and event routing for all SSL extensions
By sethhall
Detect US Social Security numbers in HTTP and SMTP with Bro.
By chrisanag1985
A Module that tries to minimize the noise from the SSL::Invalid_Server_Cert notices.
By jswaro
TCP Retransmission and State Analyzer plugin for Bro.
By corelight
Log the top DNS queries being requested.
By vitalyrepin
User Agent Parser - Bro implementation based on uap-core
By sethhall
Help Zeek by finding unidentified file types.
Page 8 of 14, showing 20 record(s) out of 261 total