Search
Zeek icon

Zeek

Network security monitor and parser

FreeOpen SourceBSD-3-ClauseCLI
Visit WebsiteGitHubDocs

Description

Zeek (formerly Bro) is an open-source network security monitor that parses live or PCAP traffic into a rich log format covering DNS, HTTP, TLS, SSH, files, and notices. It is heavily used in network DFIR.

Inputs

Document / File

Outputs

DNS RecordsIOC (Indicator of Compromise)

Tags

IOC (Indicator of Compromise)

Tool Chain

Tools that can use this tool's outputs as inputs

Zeek
outputs
IOC (Indicator of Compromise)
inputs into
MISPFreeOpenCTIFreeYetiFreeMITRE ATT&CKFreeTheHiveFreemiumCortexFreemiumAbuseIPDBFreemiumAlienVault OTXFreePulsediveFreemiumThreatFoxFreeFeodo TrackerFreePhishTankFreeOpenPhishFreemiumCisco Talos IntelligenceFreeIBM X-Force ExchangeFreemiumCyberChefFreeGoogle Safe BrowsingFreemiumMalwarebytes LabsFreeOpenIOC EditorFreeCyberbroFree
Zeek
outputs
DNS Records
inputs into
SpiderFootFreeRecon-ngFreeDNSDumpsterFreeSublist3rFreeMaltegoFreemiumSubfinderFreeDNSReaperFree

Reviews

0.0 (0 reviews)