Zeek Network Monitoring Project (@zeek)
Guthub

zeek

Twitter logo Share LinkedIn logo Share Facebook logo Share

Top repositories

1

zeek

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.
C++
6,303
star
2

spicy

C++ parser generator for dissecting protocols & files.
C++
244
star
3

packet-bricks

A netmap-based packet layer for distributing and filtering traffic.
C
176
star
4

packages

The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.
127
star
5

zeek-agent

This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2
C++
125
star
6

zeek-osquery

Bro/Zeek integration with osquery
95
star
7

zeek-docker

Docker files for building Zeek.
Dockerfile
85
star
8

binpac

High level language for describing protocol parsers.
C++
69
star
9

broker

Zeek's Messaging Library
C++
64
star
10

bro-scripts

Misc. Bro scripts
Bro
64
star
11

zeek-agent-v2

Open source endpoint agent providing host information to Zeek. [v2]
C++
61
star
12

zeekctl

Tool for managing Zeek deployments.
Python
53
star
13

bro-plugins

(OBSOLETE) Plugins for Bro
53
star
14

pysubnettree

A Python Module for CIDR Lookups
C++
50
star
15

cheat-sheet

The Bro/Zeek language cheat sheet
49
star
16

cmake

CMake scripts used in Zeek
CMake
48
star
17

zeek-docs

Documentation for Zeek
Zeek
48
star
18

package-manager

A package manager for Zeek
Python
42
star
19

time-machine

Time-Machine Dynamic Bulk Packet Recorder
C++
35
star
20

paraglob

A fairly quick data structure for matching a string against a large list of patterns.
C
34
star
21

zeek-training

Zeek Training Materials/Products
Zeek
34
star
22

zeek-af_packet-plugin

Plugin providing native AF_Packet support for Zeek.
C++
33
star
23

spicy-analyzers

Growing collection of Spicy-based protocol and file analyzers for Zeek
32
star
24

zeek-aux

Zeek Auxiliary Programs
Shell
25
star
25

trace-summary

Generates network traffic summaries.
Python
21
star
26

btest

A Generic Driver for Powerful System Tests
Python
20
star
27

zeek-sublime

Zeek scripting language highlighting/support for Sublime Text
Zeek
19
star
28

zeek-netcontrol

Connectors for the Zeek NetControl framework
Python
19
star
29

try-zeek

Code for try.zeek.org.
JavaScript
18
star
30

bro-live

Bro Live! A Bro training/learning environment.
Groff
14
star
31

zeek-agent-framework

This project is no longer maintained. There's a successor at https://github.com/zeek-packages/zeek-agent-v2
Zeek
14
star
32

broccoli-python

(DEPRECATED) Python bindings for Broccoli
Python
13
star
33

capstats

A tool to get some NIC statistics.
C++
12
star
34

spicy-ldap

LDAP analyzer
Zeek
10
star
35

zeekscript

A toolchain to parse, analyze, and format Zeek scripts
Python
9
star
36

vim-zeek

Vim syntax highlighting for the Zeek scripting language (.zeek and .bro files)
Vim Script
8
star
37

broccoli

(DEPRECATED) Bro Client Communications Library
C
6
star
38

spicy-plugin

Spicy plugin for Zeek
C++
6
star
39

bromagic

(OBSOLETE) Custom libmagic database for Bro
TeX
5
star
40

zeek-netmap

Native Netmap Packet IOSource for Zeek
C++
5
star
41

bifcl

Built-In-Function (BIF) Compiler/Generator for Zeek
Yacc
4
star
42

zeek-benchmarker

Python
4
star
43

zeek-3rdparty

Third-party code used in Zeek.
C
4
star
44

zeek-client

Experimental implementation of Zeek's future cluster management client
Python
4
star
45

tree-sitter-zeek

A tree-sitter grammar for the Zeek scripting language
JavaScript
4
star
46

zeek-archiver

A Zeek log archival service
C++
3
star
47

zeek-demo

Go
3
star
48

zeek-pkg-web

Web viewer for packages maintained by the Zeek Package Manager, e.g. https://packages.zeek.org
PHP
3
star
49

package-website

New version of packages website
Python
3
star
50

spicy-http

Spicy-based analyzer for the HTTP protocol
CMake
3
star
51

broccoli-ruby

(DEPRECATED) Ruby bindings for Broccoli
Ruby
3
star
52

zeek-testing

Test baselines for Zeek.
Makefile
3
star
53

package-template

A Zeek package template for use with the zkg package manager
Python
3
star
54

action-zkg-install

A GitHub Action for testing and installing Zeek packages
Shell
2
star
55

spicy-pe

Spicy-based analyzer for the Portable Executable (PE) image format
Zeek
2
star
56

emacs-zeek-mode

An Emacs major mode for editing Zeek scripts
Emacs Lisp
2
star
57

brogments

A Pygments lexer for Bro/Zeek scripts
Python
2
star
58

zeek-package-ci

Python
2
star
59

spicy-aux

Auxiliary development support for Spicy
Shell
1
star
60

spicy-png

Spicy-based analyzer for the PNG file format
CMake
1
star
61

hello-world

A "hello world" Zeek package
Shell
1
star
62

spicy-dhcp

Spicy-based analyzer for the DHCP protocol
CMake
1
star
63

spicy-zip

Spicy-based analyzer for the ZIP file format
Zeek
1
star
64

broccoli-perl

(DEPRECATED) Perl bindings for Broccoli
Perl
1
star
65

spicy-dns

Spicy-based analyzer for the DNS protocol
CMake
1
star
66

gen-zam

A templator for the Zeek Abstract Machine
C++
1
star
67

zeek-testing-cluster

External testsuite for the Zeek Cluster Controller
Shell
1
star
68

website

Issue tracking for zeek.org
1
star
69

tree-sitter-zeek-src

Generated sources for https://github.com/zeek/tree-sitter-zeek
C
1
star
70

homebrew-zeek

Homebrew tap for Zeek subprojects
Ruby
1
star
71

spicy-tftp

Zeek package providing a Spicy-based TFTP analyzer
Zeek
1
star