bro-ids · GitHub Topics

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

rita network-traffic threat scanning offensive-countermeasures bro-ids blueteam 安全 logs analytics analysis beacon dns

Go 2.51 k

1 年前

blacktop / docker-bro

Bro IDS Dockerfile

bro bro-ids Docker network-monitoring network-analysis ids kafka elasticsearch

Zeek 129

6 年前

alphasoc / nfr

A lightweight tool to score network traffic and flag anomalies

安全监控 intrusion-detection malware-analysis bro-ids suricata

Go 123

10 个月前

tylabs / dovehawk

Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings

misp bro-ids threat-hunting threat-intelligence zeek

Zeek 122

4 年前

binorassocies / brostash

brostash: Linux distribution based on Debian and focusing on network security events collection

bro-ids pf-ring Debian Linux filebeat 安全 elk packetbeat bro

Shell 34

5 年前

clong / vagrant-ids

An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk

Cybersecurity intrusion-detection intrusion-detection-system Vagrant vagrantfile suricata bro-ids splunk

Shell 23

7 年前

andrewbeard / broworkshop

Materials for the BSides NoVA/Charleston 2018 Bro Workshop

bro training-materials nsm zeek bro-ids workshop

Dockerfile 14

3 个月前

0snap / zeek-cluster

Docker based Zeek IDS worker cluster

bro ids Docker intrusion-detection-system cluster zeek bro-ids

Dockerfile 11

6 年前

al0ne / Bro-ELK

将bro日志输出到elk里面

bro-ids elastic elk

7 年前

ahmadjd94 / Bro-ID-Log-Analyzer

BILA: BRO IDS Logs Analyzer

安全 bro ids bro-ids plotly sqlite3

Python 7

3 年前

binorassocies / brostash-pipeline

Brostash Logstash pipeline

bro-ids logstash elasticsearch

7 年前

adi928 / brocata

Porting Suricata to Bro signatures

suricata-rule suricata zeek bro-ids Python

Python 6

6 年前

mellow-hype / c2finder

Look for un-sinkholed C&C IPs in your Bro logs (from Bambanek Consulting C&C master list)

bro-ids Cybersecurity blueteam threat-hunting

Python 5

5 年前

elnappo / bro-log-parser

Simple logfile parser for Bro IDS

bro-ids Python bro 安全

Python 5

4 年前

malice-plugins / bro

Malice Bro Plugin

bro Docker 插件 malice Malware bro-ids network-monitoring

Go 3

8 年前

u439 / Bro-Elk

Integration of Bro-IDS and ELK stack

bro-ids threat-intelligence intrusion-detection-system elasticsearch elk-stack

8 年前

binorassocies / bro-scripts

Bro IDS useful scripts

bro-ids 安全 smtp x509

Bro 3

7 年前

esnet / zeek_perfsonar_owamp

OWAMP protocol analyzer plugin for Bro/Zeek

bro zeek bro-ids

JavaScript 2

1 年前

treussart / ProbeManager_Bro

Module Bro NIDS for Probe Manager

bro-ids

Python 2

5 年前

picatz / fluentd-zeek-conf

🐦 A fluentd config for zeek

fluentd bro-ids configuration-file Google 云

6 年前