zeek-ids topics

dovehawk

122

Stars

24

Forks

Watchers

Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings

tylabs

bro-ids

misp

misp-sightings

threat-hunting

Zeek-Intelligence-Feeds

325

Stars

46

Forks

Watchers

Zeek-Formatted Threat Intelligence Feeds

CriticalPathSecurity

threat-intelligence

threatintel

malware

phishing

docker-zeek

99

Stars

31

Forks

Watchers

Zeek IDS Dockerfile

blacktop

docker

elasticsearch

ids

kafka

hardenedlinux-zeek-scripts

38

Stars

14

Forks

Watchers

hardenedlinux

network-monitoring

nix-build

zeek-ids

zeek_anomaly_detector

68

Stars

31

Forks

Watchers

A completely automated anomaly detector Zeek network flows files (conn.log).

stratosphereips

anomaly-detection

ids

intrusion-detection

network-security

zeek-flowmeter

53

Stars

15

Forks

Watchers

A Zeek script to generate features based on timing, volume and metadata for traffic classification.

zeek-flowmeter

analysis

cicflowmeter

classifiers

feature-extraction