Top 4 Python Zeek Projects
Network recon framework, published by @cea-sec & @ANSSI-FR. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!Project mention: Any recommendations for network scanner with web UI? | reddit.com/r/selfhosted | 2021-10-31
Slips. A machine learning-based Intrusion Prevention System (IDS/IPS). Free Software. Stratosphere LaboratoryProject mention: paqetz - Network security monitor based on Bro/Zeek (feedback requested) | reddit.com/r/selfhosted | 2021-08-13
interestinggg there's this open source tool calles Slips that seems to be exactly how you want your tool to be https://github.com/stratosphereips/StratosphereLinuxIPS
Less time debugging, more time building. Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.
🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.Project mention: Ask HN: Who is hiring? (September 2021) | news.ycombinator.com | 2021-09-01
Tenzir | C++, ReasonML, Rust, Python | Hamburg, Germany or Remote (EU timezones) | Open-source | Full-time | https://tenzir.com
Tenzir is an early-stage startup that builds a next generation data-plane for modern Security Operations Centers. It is our mission to help defenders pull ahead by integrating widely used open source tools and building solutions that reduce the time to detect attacks and help with post-mortem investigations. To that end, we develop the high-performance C++ database [VAST](https://github.com/tenzir/vast) with a ReasonML-based frontend that is served by a Rust API. We also develop [Threat Bus](https://github.com/tenzir/threatbus), a dissemination layer for threat intelligence, which orchestrates detection and response products in a publish/subscribe architecture.
We're currently hiring for
A Python application to filter and transfer Zeek logs to Elastic/OpenSearch. This app can also output pure JSON logs to stdout for further processing!Project mention: Python application to transfer Zeek logs to Elastic/OpenSearch | reddit.com/r/cybersecurity | 2022-01-04
Learn more: https://github.com/corelight/zeek2es via Keith Jones (@keithjjones)
What are some of the best open-source Zeek projects in Python? This list will help you:
Are you hiring? Post a new remote job listing for free.