zeek-plugin-tdsZeek network security monitor plugin that enables parsing of the Tabular Data Stream (TDS) protocol
Stars: ✭ 19 (-38.71%)
Mutual labels: zeek, zeek-package
Industrial-Security-Auditing-FrameworkISAF aims to be a framework that provides the necessary tools for the correct security audit of industrial environments. This repo is a mirror of https://gitlab.com/d0ubl3g/industrial-security-auditing-framework.
Stars: ✭ 43 (+38.71%)
Mutual labels: ics-security
MegaDevBro IDS + ELK Stack to detect and block data exfiltration
Stars: ✭ 46 (+48.39%)
Mutual labels: zeek
zeek-docsDocumentation for Zeek
Stars: ✭ 41 (+32.26%)
Mutual labels: zeek
ICS-Security-ProductsLists of products useful for ICS security
Stars: ✭ 78 (+151.61%)
Mutual labels: ics-security
IvreNetwork recon framework, published by @cea-sec & @ANSSI-FR. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!
Stars: ✭ 2,331 (+7419.35%)
Mutual labels: zeek
ZeekZeek is a powerful network analysis framework that is much different from the typical IDS you may know.
Stars: ✭ 4,180 (+13383.87%)
Mutual labels: zeek
Zeek-Network-Security-MonitorA Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the necessary hardware and setup and finally provide some examples of how you can use the power of Zeek to have absolute control over your network.
Stars: ✭ 38 (+22.58%)
Mutual labels: zeek
brimcapConvert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
Stars: ✭ 22 (-29.03%)
Mutual labels: zeek
zeek2esA Python application to filter and transfer Zeek logs to Elastic/OpenSearch. This app can also output pure JSON logs to stdout for further processing!
Stars: ✭ 16 (-48.39%)
Mutual labels: zeek
docker-zeekZeek IDS Dockerfile
Stars: ✭ 82 (+164.52%)
Mutual labels: zeek
graylog-zeek-content-packBRO/Zeek IDS content pack contains pipeline rules, a stream, a dashboard displaying interesting activity, and a syslog tcp input to capture and index BRO/Zeek logs coming from a remote sensor.
Stars: ✭ 18 (-41.94%)
Mutual labels: zeek
ivreNetwork recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!
Stars: ✭ 2,712 (+8648.39%)
Mutual labels: zeek
ansible-zeeksetup zeek, previously Bro IDS
Stars: ✭ 14 (-54.84%)
Mutual labels: zeek
S1EMThis project is a SIEM with SIRP and Threat Intel, all in one.
Stars: ✭ 270 (+770.97%)
Mutual labels: zeek
ICS-SecurityICS security resources
Stars: ✭ 34 (+9.68%)
Mutual labels: ics-security
CyberICS.github.ioNews and publication on cybersecurity in industry
Stars: ✭ 29 (-6.45%)
Mutual labels: ics-security
GRFICSv2Version 2 of the Graphical Realism Framework for Industrial Control Simulation (GRFICS)
Stars: ✭ 119 (+283.87%)
Mutual labels: ics-security
1earnffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
Stars: ✭ 3,715 (+11883.87%)
Mutual labels: ics-security
embeddedappsecEmbedded AppSec Best Practices
Stars: ✭ 38 (+22.58%)
Mutual labels: ics-security