GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → amzn → zeek-plugin-tds

amzn / zeek-plugin-tds

Licence: BSD-3-Clause License
Zeek network security monitor plugin that enables parsing of the Tabular Data Stream (TDS) protocol

Programming Languages

Zeek
47 projects
javascript
184084 projects - #8 most used programming language
C++
36643 projects - #6 most used programming language
Dockerfile
14818 projects
Makefile
30231 projects
shell
77523 projects
CMake
9771 projects

Labels

zeeksecurity-toolszeek-package

Projects that are alternatives of or similar to zeek-plugin-tds

zeek-plugin-s7comm
Zeek network security monitor plugin that enables parsing of the S7 protocol
Stars: ✭ 31 (+63.16%)
Mutual labels:  zeek, zeek-package
Zeek-Network-Security-Monitor
A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the necessary hardware and setup and finally provide some examples of how you can use the power of Zeek to have absolute control over your network.
Stars: ✭ 38 (+100%)
Mutual labels:  zeek
brimcap
Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
Stars: ✭ 22 (+15.79%)
Mutual labels:  zeek
zeek2es
A Python application to filter and transfer Zeek logs to Elastic/OpenSearch. This app can also output pure JSON logs to stdout for further processing!
Stars: ✭ 16 (-15.79%)
Mutual labels:  zeek
docker-zeek
Zeek IDS Dockerfile
Stars: ✭ 82 (+331.58%)
Mutual labels:  zeek
graylog-zeek-content-pack
BRO/Zeek IDS content pack contains pipeline rules, a stream, a dashboard displaying interesting activity, and a syslog tcp input to capture and index BRO/Zeek logs coming from a remote sensor.
Stars: ✭ 18 (-5.26%)
Mutual labels:  zeek
ivre
Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!
Stars: ✭ 2,712 (+14173.68%)
Mutual labels:  zeek
ansible-zeek
setup zeek, previously Bro IDS
Stars: ✭ 14 (-26.32%)
Mutual labels:  zeek
S1EM
This project is a SIEM with SIRP and Threat Intel, all in one.
Stars: ✭ 270 (+1321.05%)
Mutual labels:  zeek
MegaDev
Bro IDS + ELK Stack to detect and block data exfiltration
Stars: ✭ 46 (+142.11%)
Mutual labels:  zeek
zeek-docs
Documentation for Zeek
Stars: ✭ 41 (+115.79%)
Mutual labels:  zeek
Ivre
Network recon framework, published by @cea-sec & @ANSSI-FR. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!
Stars: ✭ 2,331 (+12168.42%)
Mutual labels:  zeek
Zeek
Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.
Stars: ✭ 4,180 (+21900%)
Mutual labels:  zeek

Zeek Plugin TDS

When running as part of your Zeek installation this plugin will produce three log files containing metadata extracted from any Tabular Data Stream (TDS) traffic observed on TCP port 1433.

Installation and Usage

zeek-plugin-tds is distributed as a Zeek package and is compatible with the zkg command line tool.

Sharing and Contributing

This code is made available under the BSD-3-Clause license. Guidelines for contributing are available as well as a pull request template. A Dockerfile has been included in the repository to assist with setting up an environment for testing any changes to the plugin.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].